CVE-2026-0620— L2TP over IPSec Encryption Failure on ArcherAXE75
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2026-0620
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
L2TP over IPSec Encryption Failure on ArcherAXE75
Source: NVD (National Vulnerability Database)
Vulnerability Description
When configured as L2TP/IPSec VPN server, Archer AXE75 V1 may accept connections using L2TP without IPSec protection, even when IPSec is enabled. This allows VPN sessions without encryption, exposing data in transit and compromising confidentiality.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
保护机制失效
Source: NVD (National Vulnerability Database)
Vulnerability Title
TP-LINK Archer AXE75 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
TP-LINK Archer AXE75是中国普联(TP-LINK)公司的一款无线路由器。 TP-Link Archer AXE75 V1存在安全漏洞,该漏洞源于配置为L2TP/IPSec VPN服务器时,即使启用了IPSec,仍可能接受未受IPSec保护的L2TP连接,可能导致传输数据暴露和机密性受损。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| TP-Link Systems Inc. | AXE75 | 0 ~ <1.5.1 Build 20251202 | - |
II. Public POCs for CVE-2026-0620
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2026-0620
请登录查看更多情报信息。
Same Patch Batch · TP-Link Systems Inc. · 2026-02-03 · 13 CVEs total
| CVE-2026-22220 | Improper Input Validation Leading to DoS on TP-Link Archer BE230 | |
| CVE-2026-22228 | Improper Input Validation Leading to DoS on TP-Link Archer BE230 | |
| CVE-2025-58455 | Heap-based Buffer Overflow Vulnerability in TP-Link Archer AX53 | |
| CVE-2025-58077 | Heap-based Buffer Overflow Vulnerability in TP-Link Archer AX53 | |
| CVE-2025-59482 | Heap-based Buffer Overflow Vulnerability in TP-Link Archer AX53 | |
| CVE-2025-59487 | Heap-based Buffer Overflow Vulnerability in TP-Link Archer AX53 | |
| CVE-2025-62501 | SSH Hostkey Misconfiguration Vulnerability in TP-Link Archer AX53 | |
| CVE-2025-62673 | Heap-based Buffer Overflow Vulnerability in TP-Link Archer AX53 | |
| CVE-2025-62405 | Heap-based Buffer Overflow Vulnerability in TP-Link Archer AX53 | |
| CVE-2025-62404 | Heap-based Buffer Overflow Vulnerability in TP-Link Archer AX53 | |
| CVE-2025-61944 | Heap-based Buffer Overflow Vulnerability in TP-Link Archer AX53 | |
| CVE-2025-61983 | Heap-based Buffer Overflow Vulnerability in TP-Link Archer AX53 |
IV. Related Vulnerabilities
Same vendor: TP-Link Systems Inc.
- CVE-2026-5039
Predictable Default Cryptographic Key Used for DES Encryptio - CVE-2026-5363
Use of weak cryptographic key in TP-Link Archer C7 - CVE-2026-30818
OS Command Injection Vulnerability in dnsmasq Module in TP-L - CVE-2026-30817
Arbitrary File Reading Vulnerability in dnsmasq Module in TP - CVE-2026-30816
Arbitrary File Reading Vulnerability in OpenVPN Module in TP
Same weakness: CWE-693
V. Comments for CVE-2026-0620
No comments yet