CVE-2026-3294— Authentication Logic Vulnerability on Multiple TP-Link Range Extenders
Possible ATT&CK Techniques 3AI
T1546.001 · Change Default File Association T1078 · Valid Accounts T1190 · Exploit Public-Facing ApplicationAffected Version Matrix 5
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| TP Link Systems Inc. | Archer RE360 v1 | < V1_20260515 | affected |
| TP-Link Systems Inc. | Archer RE305 v1 | < V1_20260515 | affected |
| TP-Link Systems Inc. | Archer RE650 v1 | < V1_20260429 | affected |
| TP-Link Systems Inc. | RE580D v1 | < V1_20260515 | affected |
| TP-Link Systems Inc. | TL-WA860RE v4 | < V4_20260515 | affected |
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2026-3294
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Authentication Logic Vulnerability on Multiple TP-Link Range Extenders
Source: NVD (National Vulnerability Database)
Vulnerability Description
An authentication logic vulnerability in multiple TP-Link range extenders allows an unauthenticated attacker on an adjacent network to manipulate a login parameter and reset the administrator password due to insufficient validation. Successful exploitation allows an attacker to obtain full administrative control of the affected device, potentially impacting on confidentiality, integrity, and availability.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
输入验证不恰当
Source: NVD (National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| TP-Link Systems Inc. | Archer RE650 v1 | 0 ~ V1_20260429 | - | |
| TP-Link Systems Inc. | Archer RE305 v1 | 0 ~ V1_20260515 | - | |
| TP Link Systems Inc. | Archer RE360 v1 | 0 ~ V1_20260515 | - | |
| TP-Link Systems Inc. | TL-WA860RE v4 | 0 ~ V4_20260515 | - | |
| TP-Link Systems Inc. | RE580D v1 | 0 ~ V1_20260515 | - |
II. Public POCs for CVE-2026-3294
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2026-3294
请登录查看更多情报信息。
Vendor Advisories for CVE-2026-3294 (1)
Vendor Pages for CVE-2026-3294 (10)
IV. Related Vulnerabilities
Same vendor: TP-Link Systems Inc.
- CVE-2026-5511
Information Disclosure via Diagnostic Interface Due to Impro - CVE-2026-5039
Predictable Default Cryptographic Key Used for DES Encryptio - CVE-2026-5363
Use of weak cryptographic key in TP-Link Archer C7 - CVE-2026-30818
OS Command Injection Vulnerability in dnsmasq Module in TP-L - CVE-2026-30817
Arbitrary File Reading Vulnerability in dnsmasq Module in TP
Same weakness: CWE-20
- CVE-2026-26147
Azure Stack HCI Information Disclosure Vulnerability - CVE-2026-40411
Azure Virtual Network Gateway Remote Code Execution Vulnerab - CVE-2026-34207
TypeBot: SSRF Protection Bypass via DNS-Resolved Hostnames i - CVE-2026-44417
Apache CXF: Incomplete fix for CVE-2025-48913 (Untrusted JMS - CVE-2026-34910
UniFi OS设备命令注入漏洞
V. Comments for CVE-2026-3294
No comments yet