High severity7.5NVD Advisory· Published Mar 23, 2026· Updated Mar 31, 2026

CVE-2025-15606

Description

A Denial-of-Service (DoS) vulnerability in the httpd component of TP-Link's TD-W8961N v4.0 due to improper input sanitization, allows crafted requests to trigger a processing error that causes the httpd service to crash. Successful exploitation may allow the attacker to cause service interruption, resulting in a DoS condition.

Affected products

TP-Link/Td W8961nd Firmware
cpe:2.3:o:tp-link:td-w8961nd_firmware:*:*:*:*:*:*:*:*
Range: <250925

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.tp-link.com/us/support/faq/5028/nvdVendor Advisory
www.tp-link.com/en/support/download/td-w8961n/v4/nvdProduct

News mentions

No linked articles in our index yet.

cvss	0.488
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000