CVE-2025-9377HIGH · 7.2TrackedCISA KEV

TP-Link · Multiple Routers

TP-Link Archer C7(EU) and TL-WR841N/ND(MS) contain an OS command injection vulnerability that exists in the Parental Control page. The impacted products could be end-of-life (EoL) and/or end-of-service (EoS). Users should discontinue product utilization.

Disclosed

2025-08-29

284 days ago

Status

no honeypot capture yet

on CISA KEV — watching

7-day events

across 0 distinct IPs

7-day spread

0 ASN · 0 cty

0 active days

Top ASNs

No events captured yet.

Top countries

No events captured yet.

References

https://www.tp-link.com/us/support/faq/4308/
https://nvd.nist.gov/vuln/detail/CVE-2025-9377

↗ NVD ↗ CISA KEV ↗ Search analyses