CVE-2026-30817
Arbitrary File Reading Vulnerability in dnsmasq Module in TP-Link AX53
CVSS Score
0.0
EPSS Score
0.0%
EPSS Percentile
9th
An external configuration control vulnerability in the OpenVPN module of TP-Link AX53 v1.0 allows an authenticated adjacent attacker to read arbitrary files when a malicious configuration file is processed. Successful exploitation may allow unauthorized access to arbitrary files on the device, potentially exposing sensitive information.This issue affects AX53 v1.0: before 1.7.1 Build 20260213.
| CWE | CWE-15 |
| Vendor | tp-link systems inc. |
| Product | ax53 v1.0 |
| Published | Apr 8, 2026 |
| Last Updated | May 7, 2026 |
Stay Ahead of the Next One
Get instant alerts for tp-link systems inc. ax53 v1.0
Be the first to know when new unknown vulnerabilities affecting tp-link systems inc. ax53 v1.0 are published — delivered to Slack, Telegram or Discord.
Get Free Alerts →
Free · No credit card · 60 sec setup
Affected Versions
TP-Link Systems Inc. / AX53 v1.0
0 < 1.7.1 Build 20260213
References
tp-link.com: https://www.tp-link.com/my/support/download/archer-ax53/v1/#Firmware tp-link.com: https://www.tp-link.com/en/support/download/archer-ax53/v1/#Firmware talosintelligence.com: https://talosintelligence.com/vulnerability_reports/ tp-link.com: https://www.tp-link.com/us/support/faq/5055/ talosintelligence.com: https://www.talosintelligence.com/vulnerability_reports/TALOS-2025-2305
Credits
🔍 Lilith >_> of Cisco Talos