Unrated severityNVD Advisory· Published Jan 29, 2026· Updated Jan 29, 2026

Access to System Files via SFTP on TP-Link VX800v

CVE-2025-15541

Description

Improper link resolution in the VX800v v1.0 SFTP service allows authenticated adjacent attackers to use crafted symbolic links to access system files, resulting in high confidentiality impact and limited integrity risk.

Affected products

TP-Link Systems Inc./VX800v v1.0v5
Range: 0

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.tp-link.com/de/support/download/vx800v/mitrepatch
www.tp-link.com/us/support/faq/4930/mitrevendor-advisory

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000