CVE-2026-22221

HIGH EPSS 66.7%
Published Feb 2, 20264mo ago · Modified Jun 17, 20261w ago
8.5 CVSS 4.0
High
Find Similar
Published Feb 2, 2026 4mo ago
Last Modified Jun 17, 2026 1w ago

Description

An OS Command Injection vulnerability in TP-Link Archer BE230 v1.2(vpn modules) allows adjacent authenticated attacker execute arbitrary code. Successful exploitation could allow an attacker to gain full administrative control of the device, resulting in severe compromise of configuration integrity, network security, and service availability. This CVE covers one of multiple distinct OS command injection issues identified across separate code paths. Although similar in nature, each instance is tracked under a unique CVE ID.This issue affects Archer BE230 v1.2 < 1.2.4 Build 20251218 rel.70420.

CVSS Details

Base Score
8.5
Exploitability
Impact
Vector string
CVSS:4.0/AV:A/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:L/SI:L/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Attack Vector Adjacent
Attack Complexity Low
Privileges Required High
User Interaction None
Scope X

Threat Intelligence

EPSS Exploit Probability
66.7% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-78 OS Command Injection Injection

Affected Products 2

VendorProductVersionRange
tp-linkarcher_be230_firmware* <1.2.4
tp-linkarcher_be2301.20any

References 4

  • tp-link.com https://www.tp-link.com/en/support/download/archer-be230/v1.20/#Firmware
    Product
  • tp-link.com https://www.tp-link.com/sg/support/download/archer-be230/v1.20/#Firmware
    Product
  • tp-link.com https://www.tp-link.com/us/support/download/archer-be230/v1.20/#Firmware
    Product
  • tp-link.com https://www.tp-link.com/us/support/faq/4935/
    PatchVendor Advisory

Remediation

  • tp-link.com https://www.tp-link.com/us/support/faq/4935/
    PatchVendor Advisory