CVE-2025-9377

HIGHCISA KEV

7.2

Description

The authenticated remote command execution (RCE) vulnerability exists in the Parental Control page on TP-Link Archer C7(EU) V2 and TL-WR841N/ND(MS) V9. This issue affects Archer C7(EU) V2: before 241108 and TL-WR841N/ND(MS) V9: before 241108. Both products have reached the status of EOL (end-of-life). It's recommending to purchase the new product to ensure better performance and security. If replacement is not an option in the short term, please use the second reference link to download and install the patch(es).

CVE Details

CVSS v3.1 Score7.2

SeverityHIGH

CVSS VectorCVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Attack VectorNETWORK

ComplexityLOW

Privileges RequiredHIGH

User InteractionNONE

Published8/29/2025

Last Modified11/3/2025

Sourcekev

Honeypot Sightings0

CISA KEV

VendorTP-Link

ProductMultiple Routers

Vulnerability NameTP-Link Archer C7(EU) and TL-WR841N/ND(MS) OS Command Injection Vulnerability

KEV Date Added2025-09-03

Remediation Due Date2025-09-24

Ransomware UseUnknown

Affected Products

tp-link:archer_c7tp-link:archer_c7_firmwaretp-link:tl-wr841ntp-link:tl-wr841n_firmwaretp-link:tl-wr841ndtp-link:tl-wr841nd_firmware

Weaknesses (CWE)

CWE-78

References

https://www.tp-link.com/us/support/faq/4308/(f23511db-6c3e-4e32-a477-6aa17d310630)

https://www.tp-link.com/us/support/faq/4365/(f23511db-6c3e-4e32-a477-6aa17d310630)

https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2025-9377(134c704f-9b21-4f2e-91b3-4a467353bcc0)

IOC Correlations

No correlations recorded

This product uses data from the NVD API but is not endorsed or certified by the NVD.