InfoSecBulletin Cybersecurity for mankind
TP-Link has given an urgent security warning about its Archer AX53 v1.0 router. There are 5 different flaws that could let hackers take over the device or steal private information. These issues affect important parts like tmpserver, dnsmasq, and OpenVPN.
The biggest threats found are OS Command Injection in the router’s communication and networking modules. These issues let an attacker who is nearby get past security and run system commands.
LastPass says hackers stole customer data via Klue, supply chain breach
New Apple Exploit Bypasses Boot Defenses, Possibly Affects Millions of iPhones Worldwide
India’s Tata Electronics hit by cyber breach: Hacker target 630 GB record
Anthropic’s Mythos reportedly broke NSA classified systems in hours
OpenAI New Method “Deployment Simulation” Predicts AI Risks Before Deployment
AryStinger botnet infected thousands of D-Link routers globally
Hacker suspected of sending alerts across Brazil
CyberSentinel AI features 33 security tools like Nmap, SQLMap, and ZAP, utilizing Claude and GPT
Barracuda hosts Dhaka roundtable on cyber resilience
CISA Alerts Fortinet Users as FortiBleed Affects 86,644 FortiGate Devices
CVE-2026-30818 (CVSS 8.5): This high-severity flaw in the dnsmasq module allows an attacker to “execute arbitrary code when a specially crafted configuration file is processed due to insufficient input validation”. Successful exploitation “may allow the attacker to modify device configuration, access sensitive information, or further compromise system integrity”.
CVE-2026-30815 (CVSS 8.5): A similar injection vulnerability exists in the OpenVPN module. Attackers can execute commands that “may allow modification of configuration files, disclosure of sensitive information, or further compromise of device integrity”.
The advisory points out a buffer overflow issue (CVE-2026-30814) in the tmpServer module, which has a CVSS score of 7.3.
A buffer overflow in this module lets an attacker nearby to cause a segmentation fault and maybe run unwanted code using a special file. If they succeed, this could change the device settings, reveal sensitive information, or harm the device’s safety.
TP-Link also fixed two issues that let someone read files on a local system (CVE-2026-30816 and CVE-2026-30817). These problems happen when a harmful configuration file is used. This type of unauthorized access “potentially exposing sensitive information” stored on the device.
The vulnerabilities are confirmed to affect the following specific hardware and software configuration:
Product Model: Archer AX53 v1.0
Affected Version: All versions prior to 1.7.1 Build 20260213
TP-Link advises users with affected devices to act quickly to protect their network and personal data.
