Cyber Resilience

CVE-2025-61944

High

Published: 03 February 2026

Published
03 February 2026
Modified
16 March 2026
KEV Added
Patch
CVSS Score v4 7.3 CVSS:4.0/AV:A/AC:H/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
EPSS Score 0.0003 8.4th percentile
Risk Priority 15 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2025-61944 is a high-severity Heap-based Buffer Overflow (CWE-122) vulnerability in Tp-Link Archer Ax53 Firmware. Its CVSS base score is 7.3 (High).

Operationally, exploitation aligns with the MITRE ATT&CK technique Exploit Public-Facing Application (T1190); ranked at the 8.4th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog.

The strongest mitigations our analysis identified are NIST 800-53 SI-10 (Information Input Validation) and SI-2 (Flaw Remediation).

Deeper analysis

CVE-2025-61944 is a heap-based buffer overflow vulnerability (CWE-122) in the tmpserver modules of the TP-Link Archer AX53 v1.0 router. It affects versions through 1.3.1 Build 20241120 and has a CVSS v3.1 base score of 8.0 (AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H). The flaw arises when processing a specially crafted network packet containing an excessive number of fields with zero-length values, leading to potential memory corruption.

Authenticated attackers on the adjacent network (AV:A) with low privileges (PR:L) can exploit this vulnerability with low complexity (AC:L) and no user interaction (UI:N). Successful exploitation may cause a segmentation fault, resulting in a denial of service, or potentially allow arbitrary code execution with high impacts on confidentiality, integrity, and availability (C:H/I:H/A:H).

Mitigation details are available in vendor advisories and reports. TP-Link provides updated firmware for the Archer AX53 v1.0 on regional support download pages, such as those for the US and Malaysia. Talos Intelligence's vulnerability report TALOS-2025-2288 offers technical analysis, and a related FAQ on TP-Link's site addresses firmware updates. Security practitioners should apply the latest firmware to vulnerable devices.

EU & UK References

Vulnerability details

Heap-based Buffer Overflow vulnerability in TP-Link Archer AX53 v1.0 (tmpserver modules) allows authenticated adjacent attackers to cause a segmentation fault or potentially execute arbitrary code via a specially crafted network packet containing an excessive number of fields with zero‑length values.This…

more

issue affects Archer AX53 v1.0: through 1.3.1 Build 20241120.

CWE(s)

Related Threats

MITRE ATT&CK Enterprise TechniquesAI

T1190 Exploit Public-Facing Application Initial Access
Adversaries may attempt to exploit a weakness in an Internet-facing host or system to initially access a network.
T1210 Exploitation of Remote Services Lateral Movement
Adversaries may exploit remote services to gain unauthorized access to internal systems once inside of a network.
Why these techniques?

Heap buffer overflow in router network service (tmpserver) directly enables remote exploitation for code execution or DoS via crafted packets.

Confidence: HIGH · MITRE ATT&CK Enterprise v18.1

CVEs Like This One

CVE-2025-61983Same product: Tp-Link Archer Ax53
CVE-2025-62673Same product: Tp-Link Archer Ax53
CVE-2025-59487Same product: Tp-Link Archer Ax53
CVE-2025-58077Same product: Tp-Link Archer Ax53
CVE-2025-58455Same product: Tp-Link Archer Ax53
CVE-2025-62405Same product: Tp-Link Archer Ax53
CVE-2025-59482Same product: Tp-Link Archer Ax53
CVE-2025-62404Same product: Tp-Link Archer Ax53
CVE-2026-30814Same product: Tp-Link Archer Ax53
CVE-2025-15607Same product: Tp-Link Archer Ax53

Affected Assets

tp-link
archer ax53 firmware
1.0

Mitigating Controls

Mitigating Controls (NIST 800-53 r5) AI

prevent

Directly remediates the heap-based buffer overflow by applying vendor-provided firmware updates to the affected TP-Link Archer AX53 router.

prevent

Requires validation of incoming network packets to reject those with excessive numbers of zero-length fields, preventing the buffer overflow in tmpserver modules.

prevent

Implements heap memory protections such as bounds checking and safe unlinking to mitigate exploitation of the buffer overflow even if invalid packets are processed.

References