← ExploitWatch
HomeExploited Vulnerabilities

CVE-2015-3035 — Actively Exploited: Multiple Archer Devices (TP-Link)

Directory traversal vulnerability in multiple TP-Link Archer devices allows remote attackers to read arbitrary files via a .. (dot dot) in the PATH_INFO to login/.

CVE IDCVE-2015-3035
VendorTP-Link
ProductMultiple Archer Devices
Vulnerability nameTP-Link Multiple Archer Devices Directory Traversal Vulnerability
Date added2022-03-25
Remediation due2022-04-15
Known ransomware useUnknown
Required actionApply updates per vendor instructions.
DescriptionDirectory traversal vulnerability in multiple TP-Link Archer devices allows remote attackers to read arbitrary files via a .. (dot dot) in the PATH_INFO to login/.
SourceCISA Known Exploited Vulnerabilities

🔍 Search all exploited vulnerabilities →