CVE-2026-5509— Arbitrary Command Injection via Browser Developer Console in TP-Link Archer BE450 and BE7200
Possible ATT&CK Techniques 1AI
T1190 · Exploit Public-Facing ApplicationAffected Version Matrix 2
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| TP-Link Systems Inc. | Archer BE450 v1 | < 1.3.0 Build 20260416 | affected |
| TP-Link Systems Inc. | Archer BE7200 V1 | < 1.3.0 Build 20260416 | affected |
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2026-5509
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Arbitrary Command Injection via Browser Developer Console in TP-Link Archer BE450 and BE7200
Source: NVD (National Vulnerability Database)
Vulnerability Description
An authenticated command injection vulnerability exists in the Archer BE450 v1 and BE7200 v1 router that allows an administrator to execute arbitrary system commands through the web management interface. After successfully authenticating to the admin interface, an attacker can leverage the browser’s developer console by supplying a crafted input that is passed to backend system commands without adequate sanitization. Successful exploitation enables execution of arbitrary commands with elevated privileges on the device, which may allow the attacker to start unauthorized services, modify system configuration, or otherwise fully compromise the router’s operating environment.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
输入验证不恰当
Source: NVD (National Vulnerability Database)
Vulnerability Title
TP-Link Archer BE7200和TP-Link Archer BE450 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
TP-Link Archer BE7200和TP-Link Archer BE450都是中国普联(TP-Link)公司的一款Wi-Fi 7双频无线路由器。 TP-Link Archer BE450 v1版本和TP-Link Archer BE7200 v1版本存在安全漏洞,该漏洞源于命令注入,可能导致管理员通过Web管理界面执行任意系统命令,启动未授权服务、修改系统配置或完全破坏路由器运行环境。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| TP-Link Systems Inc. | Archer BE7200 V1 | 0 ~ 1.3.0 Build 20260416 | - | |
| TP-Link Systems Inc. | Archer BE450 v1 | 0 ~ 1.3.0 Build 20260416 | - |
II. Public POCs for CVE-2026-5509
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2026-5509
请登录查看更多情报信息。
Vendor Advisories for CVE-2026-5509 (2)
Vendor Pages for CVE-2026-5509 (3)
IV. Related Vulnerabilities
Same vendor: TP-Link Systems Inc.
- CVE-2026-1871
Authenticated Stack-based Buffer Overflow in RTSP Authentica - CVE-2026-34127
Stored Cross-Site Scripting (XSS) via Configuration File Imp - CVE-2026-34126
Bluetooth Communication Uses Unencrypted Transmission During - CVE-2026-8697
Improper Authentication Rate Limiting on TP-Link's Archer C6 - CVE-2026-3294
Authentication Logic Vulnerability on Multiple TP-Link Range
Same weakness: CWE-20
- CVE-2026-47201
authentik: XML Signature Wrapping in SAML Source ACS allows - CVE-2026-35049
wire-ios has Persistent Remote DoS via Integer Underflow - CVE-2026-45685
OpenTelemetry eBPF Instrumentation: MongoDB parser panics on - CVE-2026-45678
OpenTelemetry eBPF Instrumentation: Postgres BIND parsing ca - CVE-2026-45676
OpenTelemetry eBPF Instrumentation: Unsafe fastelf parsing a
V. Comments for CVE-2026-5509
No comments yet