CVE-2025-13399

A weakness in the web interface’s application layer encryption in VX800v v1.0 allows an adjacent attacker to brute force the weak AES key and decrypt intercepted traffic. Successful exploitation requires network proximity but no authentication, and may result in high impact to confidentiality, integrity, and availability of transmitted data.

CVSS v3 8.8 HIGH

8.8^/10

CVSS v3 : HIGH

Vector :

Exploitability : 2.8 / Impact : 5.9

Attack Vector ADJACENT_NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://www.tp-link.com/de/support/download/vx800v/#Firmware	Product
https://www.tp-link.com/us/support/faq/4930/	Vendor Advisory

Configurations

Configuration 1 (hide)

AND

cpe:2.3:o:tp-link:vx800v_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:tp-link:vx800v:1.0:*:*:*:*:*:*:*

History

09 Mar 2026, 17:51

Type	Values Removed	Values Added
References	~~() https://www.tp-link.com/de/support/download/vx800v/#Firmware -~~	() https://www.tp-link.com/de/support/download/vx800v/#Firmware - Product
References	~~() https://www.tp-link.com/us/support/faq/4930/ -~~	() https://www.tp-link.com/us/support/faq/4930/ - Vendor Advisory
CPE		cpe:2.3:o:tp-link:vx800v_firmware:::::::: cpe:2.3:h:tp-link:vx800v:1.0:::::::*
First Time		Tp-link Tp-link vx800v Firmware Tp-link vx800v
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : unknown v3 : 8.8
Summary		(es) Una debilidad en el cifrado de capa de aplicación de la interfaz web en VX800v v1.0 permite a un atacante adyacente forzar por fuerza bruta la clave AES débil y descifrar el tráfico interceptado. La explotación exitosa requiere proximidad de red pero no autenticación, y puede resultar en un alto impacto en la confidencialidad, integridad y disponibilidad de los datos transmitidos.

29 Jan 2026, 19:16

Type	Values Removed	Values Added
New CVE

Information

Published : 2026-01-29 19:16

Updated : 2026-03-09 17:51

NVD link : CVE-2025-13399

Mitre link : CVE-2025-13399

CVE.ORG link : CVE-2025-13399

JSON object : View

Products Affected

tp-link

vx800v
vx800v_firmware

CWE

CWE-331

Insufficient Entropy

{"id": "CVE-2025-13399", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 8.8, "attackVector": "ADJACENT_NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 2.8}], "cvssMetricV40": [{"type": "Secondary", "source": "f23511db-6c3e-4e32-a477-6aa17d310630", "cvssData": {"Safety": "NOT_DEFINED", "version": "4.0", "Recovery": "NOT_DEFINED", "baseScore": 7.7, "Automatable": "NOT_DEFINED", "attackVector": "ADJACENT", "baseSeverity": "HIGH", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:A/AC:H/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X", "exploitMaturity": "NOT_DEFINED", "providerUrgency": "NOT_DEFINED", "userInteraction": "NONE", "attackComplexity": "HIGH", "attackRequirements": "NONE", "privilegesRequired": "NONE", "subIntegrityImpact": "NONE", "vulnIntegrityImpact": "HIGH", "integrityRequirement": "NOT_DEFINED", "modifiedAttackVector": "NOT_DEFINED", "subAvailabilityImpact": "NONE", "vulnAvailabilityImpact": "HIGH", "availabilityRequirement": "NOT_DEFINED", "modifiedUserInteraction": "NOT_DEFINED", "modifiedAttackComplexity": "NOT_DEFINED", "subConfidentialityImpact": "NONE", "vulnConfidentialityImpact": "HIGH", "confidentialityRequirement": "NOT_DEFINED", "modifiedAttackRequirements": "NOT_DEFINED", "modifiedPrivilegesRequired": "NOT_DEFINED", "modifiedSubIntegrityImpact": "NOT_DEFINED", "modifiedVulnIntegrityImpact": "NOT_DEFINED", "vulnerabilityResponseEffort": "NOT_DEFINED", "modifiedSubAvailabilityImpact": "NOT_DEFINED", "modifiedVulnAvailabilityImpact": "NOT_DEFINED", "modifiedSubConfidentialityImpact": "NOT_DEFINED", "modifiedVulnConfidentialityImpact": "NOT_DEFINED"}}]}, "published": "2026-01-29T19:16:10.220", "references": [{"url": "https://www.tp-link.com/de/support/download/vx800v/#Firmware", "tags": ["Product"], "source": "f23511db-6c3e-4e32-a477-6aa17d310630"}, {"url": "https://www.tp-link.com/us/support/faq/4930/", "tags": ["Vendor Advisory"], "source": "f23511db-6c3e-4e32-a477-6aa17d310630"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Secondary", "source": "f23511db-6c3e-4e32-a477-6aa17d310630", "description": [{"lang": "en", "value": "CWE-331"}]}], "descriptions": [{"lang": "en", "value": "A weakness in the web interface\u2019s application layer encryption in VX800v v1.0 allows an adjacent attacker to brute force the weak AES key and decrypt intercepted traffic. Successful exploitation requires network proximity but no authentication, and may result in high impact to confidentiality, integrity, and availability of transmitted data."}, {"lang": "es", "value": "Una debilidad en el cifrado de capa de aplicaci\u00f3n de la interfaz web en VX800v v1.0 permite a un atacante adyacente forzar por fuerza bruta la clave AES d\u00e9bil y descifrar el tr\u00e1fico interceptado. La explotaci\u00f3n exitosa requiere proximidad de red pero no autenticaci\u00f3n, y puede resultar en un alto impacto en la confidencialidad, integridad y disponibilidad de los datos transmitidos."}], "lastModified": "2026-03-09T17:51:35.107", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:tp-link:vx800v_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D323DA3B-C62D-433E-980E-78A9C575D676", "versionEndExcluding": "800.0.11"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:tp-link:vx800v:1.0:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "10362289-8BD9-4B51-A347-6E4DA2BC6507"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "f23511db-6c3e-4e32-a477-6aa17d310630"}