Skip to main content
A Singapore Government Agency Website How to identify
Official website links end with .gov.sg
Government agencies communicate via .gov.sg websites (e.g. go.gov.sg/open). Trusted websites
Secure websites use HTTPS
Look for a lock () or https:// as an added precaution. Share sensitive information only on official, secure websites.

Government officials will never ask you to transfer money or disclose bank log-in details over a phone call.

Call the 24/7 ScamShield Helpline at 1799 if you are unsure if something is a scam.

Cyber Security Agency of Singapore
Alerts

Critical Vulnerability in TP-Link Archer Products

26 March 2026

TP-Link has released a security advisory addressing multiple vulnerabilities on TP-Link Archer products. Users and administrators of affected products are advised to update to the latest versions immediately.

Background

TP-Link has released a security advisory addressing multiple vulnerabilities (CVE-2025-15517, CVE-2025-15518, CVE-2025-15519 and CVE-2025-15605) on TP-Link Archer NX200, NX210, NX500 and NX600 products. The vulnerabilities include authentication bypass and input validation flaws that could allow attackers to gain unauthorised access or execute malicious commands.

Impact

Successful exploitation of these vulnerabilities could allow:

  • CVE-2025-15517: An unauthenticated attacker to perform privileged administrative actions via exposed Hypertext Transfer Protocol (HTTP) endpoints, which may result in unauthorised firmware uploads and configuration changes.

  • CVE-2025-15518 & CVE-2025-15519: An authenticated attacker with administrative privileges to execute arbitrary commands on the operating system, impacting the confidentiality, integrity, and availability of the device.

  • CVE-2025-15605: An unauthenticated attacker to decrypt, modify and re-encrypt configuration files, compromising the confidentiality and integrity of device configuration data.

Affected Products

The following products hardware/firmware versions are affected by the vulnerabilities.

  • Versions prior to TP-Link Archer NX600

    • v3.0: < 1.3.0 Build 260309

    • v2.0: < 1.3.0 Build 260311

    • v1.0: < 1.4.0 Build 260311

  • Versions prior to TP-Link Archer NX500

    • v2.0: < 1.5.0 Build 260309

    • v1.0: < 1.3.0 Build 260311

  • Versions prior to TP-Link Archer NX210

    • v3.0: < 1.3.0 Build 260309

    • v2.0 & v2.20: < 1.3.0 Build 260311

  • Versions prior to TP-Link Archer NX200

    • v3.0: < 1.3.0 Build 260309

    • v2.20: < 1.3.0 Build 260311

    • v2.0: < 1.3.0 Build 260311

    • v1.0: < 1.8.0 Build 260311

Recommendations

Users and administrators of affected product versions are advised to update to the latest versions immediately. 

References

https://www.bleepingcomputer.com/news/security/tp-link-warns-users-to-patch-critical-router-auth-bypass-flaw/

https://www.tp-link.com/us/support/faq/5027/

https://nvd.nist.gov/vuln/detail/CVE-2025-15517

https://nvd.nist.gov/vuln/detail/CVE-2025-15518

https://nvd.nist.gov/vuln/detail/CVE-2025-15519

https://nvd.nist.gov/vuln/detail/CVE-2025-15605

Back to top