CVE-2025-62501— SSH Hostkey Misconfiguration Vulnerability in TP-Link Archer AX53
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2025-62501
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
SSH Hostkey Misconfiguration Vulnerability in TP-Link Archer AX53
Source: NVD (National Vulnerability Database)
Vulnerability Description
SSH Hostkey misconfiguration vulnerability in TP-Link Archer AX53 v1.0 (tmpserver modules) allows attackers to obtain device credentials through a specially crafted man‑in‑the‑middle (MITM) attack. This could enable unauthorized access if captured credentials are reused.This issue affects Archer AX53 v1.0: through 1.3.1 Build 20241120.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
未进行实体认证的密钥交换
Source: NVD (National Vulnerability Database)
Vulnerability Title
TP-Link Archer AX53 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
TP-Link Archer AX53是中国普联(TP-Link)公司的一款双拼路由器。 TP-Link Archer AX53 v1.0 1.3.1 Build 20241120及之前版本存在安全漏洞,该漏洞源于SSH主机密钥配置不当,可能导致中间人攻击获取设备凭据。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| TP-Link Systems Inc. | Archer AX53 v1.0 | 0 ~ 1.3.1 Build 20241120 | - |
II. Public POCs for CVE-2025-62501
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2025-62501
请登录查看更多情报信息。
Same Patch Batch · TP-Link Systems Inc. · 2026-02-03 · 13 CVEs total
| CVE-2026-22220 | Improper Input Validation Leading to DoS on TP-Link Archer BE230 | |
| CVE-2026-22228 | Improper Input Validation Leading to DoS on TP-Link Archer BE230 | |
| CVE-2026-0620 | L2TP over IPSec Encryption Failure on ArcherAXE75 | |
| CVE-2025-58455 | Heap-based Buffer Overflow Vulnerability in TP-Link Archer AX53 | |
| CVE-2025-58077 | Heap-based Buffer Overflow Vulnerability in TP-Link Archer AX53 | |
| CVE-2025-59482 | Heap-based Buffer Overflow Vulnerability in TP-Link Archer AX53 | |
| CVE-2025-59487 | Heap-based Buffer Overflow Vulnerability in TP-Link Archer AX53 | |
| CVE-2025-62673 | Heap-based Buffer Overflow Vulnerability in TP-Link Archer AX53 | |
| CVE-2025-62405 | Heap-based Buffer Overflow Vulnerability in TP-Link Archer AX53 | |
| CVE-2025-62404 | Heap-based Buffer Overflow Vulnerability in TP-Link Archer AX53 | |
| CVE-2025-61944 | Heap-based Buffer Overflow Vulnerability in TP-Link Archer AX53 | |
| CVE-2025-61983 | Heap-based Buffer Overflow Vulnerability in TP-Link Archer AX53 |
IV. Related Vulnerabilities
Same product: Archer AX53 v1.0
- CVE-2025-62673
Heap-based Buffer Overflow Vulnerability in TP-Link Archer A - CVE-2025-62405
Heap-based Buffer Overflow Vulnerability in TP-Link Archer A - CVE-2025-62404
Heap-based Buffer Overflow Vulnerability in TP-Link Archer A - CVE-2025-61983
Heap-based Buffer Overflow Vulnerability in TP-Link Archer A - CVE-2025-61944
Heap-based Buffer Overflow Vulnerability in TP-Link Archer A
Same vendor: TP-Link Systems Inc.
- CVE-2026-5039
Predictable Default Cryptographic Key Used for DES Encryptio - CVE-2026-5363
Use of weak cryptographic key in TP-Link Archer C7 - CVE-2026-30818
OS Command Injection Vulnerability in dnsmasq Module in TP-L - CVE-2026-30817
Arbitrary File Reading Vulnerability in dnsmasq Module in TP - CVE-2026-30816
Arbitrary File Reading Vulnerability in OpenVPN Module in TP
Same weakness: CWE-322
- CVE-2026-1354
Zero Motorcycles Firmware Key Exchange without Entity Authen - CVE-2025-13914
Apstra: SSH host key validation vulnerability for managed de - CVE-2026-33697
CoCoS attested TLS is vulnerable to relay attacks via extrac - CVE-2026-1709
Keylime: keylime: authentication bypass allows unauthorized - CVE-2025-20163
Cisco Nexus Dashboard Fabric Controller SSH Host Key Vulnera
V. Comments for CVE-2025-62501
No comments yet