TP-Link, Photoshop, OpenVPN, Norton VPN vulnerabilities

Cisco Talos’ Vulnerability Discovery & Research team recently disclosed eight vulnerabilities in TP-Link, and one each in Adobe Photoshop, OpenVPN, and Gen Digital's Norton VPN. The vulnerabilities mentioned in this blog post have been patched by their respective vendors, in adherence to Cisco’s third-party vulnerability

Cisco Talos’ Vulnerability Discovery & Research team recently disclosed eight vulnerabilities in TP-Link, and one each in Adobe Photoshop, OpenVPN, and Gen Digital's Norton VPN. The vulnerabilities mentioned in this blog post have been patched by their respective vendors, in adherence to Cisco’s third-party vulnerability disclosure policy , except the Norton VPN vulnerability, which was discovered in-use before a patch was available.   For Snort coverage that can detect the exploitation of these vulnerabilities, download the latest rule sets from Snort.

org , and our latest Vulnerability Advisories are always posted on Talos Intelligence’s website . TP-Link vulnerabilities Discovered by Lilith >_> of Cisco Talos. The TP-Link Archer AX53 is a dual band gigabit Wi-Fi router. Talos has disclosed eight vulnerabilities, as follows: TALOS-2025-2302 (CVE-2026-30814) is a stack-based buffer overflow vulnerability in the tmpServer opcode 0x436 functionality of Tp-Link AX53 v1. 0 1. 3. 1 Build 20241120 rel. 54901(5553). A specially crafted set of network packets can lead to arbitrary code execution. An attacker can send packets to trigger this vulnerability.

TALOS-2025-2303 (CVE-2026-30815) is an OS command injection vulnerability in the OpenVPN configuration restore script_security functionality of Tp-Link Archer AX53 v1. 0 1. 3. 1 Build 20241120 rel. 54901(5553). A specially crafted configuration value can lead to arbitrary command execution. An attacker can upload a malicious file to trigger this vulnerability. TALOS-2025-2304 (CVE-2026-30816) is an external config control vulnerability in the OpenVPN configuration restore crt. sed functionality of Tp-Link Archer AX53 v1. 0 1. 3. 1 Build 20241120 rel. 54901(5553). A specially crafted configuration value can lead to arbitrary file reading.

An attacker can upload a malicious file to trigger this vulnerability. TALOS-2025-2305 (CVE-2026-30817) is an external config control vulnerability in the OpenVPN configuration restore route_up functionality of Tp-Link Archer AX53 v1. 0 1. 3. 1 Build 20241120 rel. 54901(5553). A specially crafted configuration value can lead to arbitrary file reading. An attacker can upload a malicious file to trigger this vulnerability. TALOS-2025-2306 (CVE-2026-30818) is an OS command injection vulnerability exists in the dnsmasq configuration restore dhcpscript functionality of Tp-Link Archer AX53 v1. 0 1. 3. 1 Build 20241120 rel. 54901(5553).

A specially crafted configuration value can lead to arbitrary command execution. An attacker can upload a malicious file to trigger this vulnerability. TALOS-2025-2307 , TALOS-2025-2308 , and TALOS-2025-2309 are OS command injection vulnerabilities in the OpenVPN configuration restore client_disconnect, client_connect, and route_up functionalities of Tp-Link Archer AX53 v1. 0 1. 3. 1 Build 20241120 rel. 54901(5553). A specially crafted configuration value can lead to arbitrary command execution.