Unrated severityNVD Advisory· Published Jan 9, 2026· Updated Jan 9, 2026
Arbitrary File Deletion Vulnerability in TP-Link Archer AXE75
CVE-2025-15035
Description
Improper Input Validation vulnerability in TP-Link Archer AXE75 v1.6 (vpn modules) allows an authenticated adjacent attacker to delete arbitrary server file, leading to possible loss of critical system files and service interruption or degraded functionality.This issue affects Archer AXE75 v1.6: ≤ build 20250107.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2<= build 20250107+ 1 more
- (no CPE)range: <= build 20250107
- (no CPE)range: 0
Patches
Vulnerability mechanics
References
5- www.tp-link.com/en/support/download/archer-axe75/v1/mitrepatch
- www.tp-link.com/jp/support/download/archer-axe75/v1/mitrepatch
- www.tp-link.com/us/support/download/archer-axe75/v1/mitrepatch
- www.tp-link.com/phppage/preview.phpmitrevendor-advisory
- github.com/PaloAltoNetworks/u42-vulnerability-disclosures/tree/master/2025/PANW-2025-0004mitre
News mentions
0No linked articles in our index yet.