CVE-2026-22228

Vulnerability Description

An authenticated user with high privileges may trigger a denial‑of‑service condition in TP-Link Archer BE230 v1.2 by restoring a crafted configuration file containing an excessively long parameter. Restoring such a file can cause the device to become unresponsive, requiring a reboot to restore normal operation.
This issue affects Archer BE230 v1.2 < 1.2.4 Build 20251218 rel.70420.

Vulnerability Details

Published Date

February 03, 2026

Last Modified

February 04, 2026

CWE ID

CWE-400

Source

NVD

Vendor

TP-Link Systems Inc.

Product

Archer BE230 v1.2

External References

https://www.tp-link.com/en/support/download/archer-be230/v1.20/#Firmware
https://www.tp-link.com/sg/support/download/archer-be230/v1.20/#Firmware
https://www.tp-link.com/us/support/download/archer-be230/v1.20/#Firmware
https://www.tp-link.com/us/support/faq/4941/

CVE-2026-22228

Vulnerability Description

Vulnerability Details

External References

Discussion (0)

Add Comment