TP-Link Fixes Bug That Lets Hackers Take Over Routers Without a Password

TP-Link released patches for multiple critical flaws in its Archer NX router series (NX200, NX210, NX500, NX600) that allowed attackers to bypass authentication, decrypt and modify configuration files, execute commands in admin mode, and potentially push rogue firmware; CISA flagged six CVEs and added two to its Known Exploited Vulnerabilities list. Users are strongly urged to install the vendor firmware updates immediately to prevent unauthorized access and network compromise.