{“lastseen”:”2026-05-19T18:05:08″,”description”:”\\n\\nCisco Talos’ Vulnerability Discovery \\u0026 Research team recently disclosed eight vulnerabilities in TP-Link, and one each in Adobe Photoshop, OpenVPN, and Gen Digital’s Norton VPN.\\n\\nThe vulnerabilities mentioned in this blog post have been patched by their respective vendors, in adherence to _Cisco ‘s third-party vulnerability disclosure policy_, except the Norton VPN vulnerability, which was discovered in-use before a patch was available.\\n\\nFor Snort coverage that can detect the exploitation of these vulnerabilities, download the latest rule sets from _Snort.org_, and our latest Vulnerability Advisories are always posted on _Talos Intelligence ‘s website_.\\n\\n## **TP-Link vulnerabilities**\\n\\n _Discovered by Lilith \\u003e_\\u003e of Cisco Talos._\\n\\nThe TP-Link Archer AX53 is a dual band gigabit Wi-Fi router. Talos has disclosed eight vulnerabilities, as follows:\\n\\n_TALOS-2025-2302_ (CVE-2026-30814) is a stack-based buffer overflow vulnerability in the tmpServer opcode 0x436 functionality of Tp-Link AX53 v1.0 1.3.1 Build 20241120 rel.54901(5553). A specially crafted set of network packets can lead to arbitrary code execution. An attacker can send packets to trigger this vulnerability.\\n\\n_TALOS-2025-2303_ (CVE-2026-30815) is an OS command injection vulnerability in the OpenVPN configuration restore script_security functionality of Tp-Link Archer AX53 v1.0 1.3.1 Build 20241120 rel.54901(5553). A specially crafted configuration value can lead to arbitrary command execution. An attacker can upload a malicious file to trigger this vulnerability.\\n\\n_TALOS-2025-2304_ (CVE-2026-30816) is an external config control vulnerability in the OpenVPN configuration restore crt.sed functionality of Tp-Link Archer AX53 v1.0 1.3.1 Build 20241120 rel.54901(5553). A specially crafted configuration value can lead to arbitrary file reading. An attacker can upload a malicious file to trigger this vulnerability.\\n\\n_TALOS-2025-2305_ (CVE-2026-30817) is an external config control vulnerability in the OpenVPN configuration restore route_up functionality of Tp-Link Archer AX53 v1.0 1.3.1 Build 20241120 rel.54901(5553). A specially crafted configuration value can lead to arbitrary file reading. An attacker can upload a malicious file to trigger this vulnerability.\\n\\n_TALOS-2025-2306_ (CVE-2026-30818) is an OS command injection vulnerability exists in the dnsmasq configuration restore dhcpscript functionality of Tp-Link Archer AX53 v1.0 1.3.1 Build 20241120 rel.54901(5553). A specially crafted configuration value can lead to arbitrary command execution. An attacker can upload a malicious file to trigger this vulnerability.\\n\\n_TALOS-2025-2307_, _TALOS-2025-2308_, and _TALOS-2025-2309_ are OS command injection vulnerabilities in the OpenVPN configuration restore client_disconnect, client_connect, and route_up functionalities of Tp-Link Archer AX53 v1.0 1.3.1 Build 20241120 rel.54901(5553). A specially crafted configuration value can lead to arbitrary command execution. An attacker can upload a malicious file to trigger this vulnerability.\\n\\n## **Photoshop vulnerabilities**\\n\\n _Discovered by KPC of Cisco Talos._\\n\\nAdobe Photoshop is a popular digital photo manipulation and illustration program with a wide array of features for personal and business use cases.\\n\\n_TALOS-2025-2274_ (CVE-2026-34632) is a privilege escalation vulnerability in the installation process of Adobe Photoshop via the Microsoft Store. The vulnerable version of the installer is Photoshop_Set-Up.exe 2.11.0.30. A low-privilege user can replace files during the installation process, which may result in elevation of privileges.\\n\\n## **OpenVPN vulnerabilities**\\n\\n _Discovered by Emma Reuter of Cisco ASIG._\\n\\nOpenVPN is an open source SSL VPN with remote access, site-to-site VPNs, WiFi security, enterprise load balancing, failover, and granular access control features available.\\n\\n_TALOS-2026-2381_ (CVE-2026-35058) is a reachable assertion vulnerability in the TLS Crypt v2 Client Key Extraction functionality of OpenVPN 2.6.x and 2.8_git. A specially crafted network packet can lead to a denial of service. An attacker can send a sequence of malicious packets to trigger this vulnerability.\\n\\n## **Gen Digital Norton VPN vulnerabilities**\\n\\n _Discovered by KPC of Cisco Talos._\\n\\nGen Digital’s Norton VPN client is a proprietary tool for private proxy network information exchange.\\n\\n _TALOS-2025-2276_ (CVE-2025-58074) is a privilege escalation vulnerability in the installation process of Norton VPN via the Microsoft Store. A low-privilege user can replace files during the installation process, which may result in deletion of arbitrary files, possibly leading to elevation of privileges.”,”published”:”2026-05-19T15:39:37″,”modified”:”2026-05-19T15:39:37″,”type”:”talosblog”,”title”:”TP-Link, Photoshop, OpenVPN, Norton VPN vulnerabilities”,”source”:””,”references”:””,”id”:”TALOSBLOG:DEFD304B65DC1819E89A52C252EE300F”,”bulletinFamily”:”blog”,”cwe”:null,”cvelist”:[“CVE-2025-58074″,”CVE-2026-30814″,”CVE-2026-30815″,”CVE-2026-30816″,”CVE-2026-30817″,”CVE-2026-30818″,”CVE-2026-34632″,”CVE-2026-35058″],”sourceData”:””,”sourceHref”:””,”cvss”:{“score”:8.8,”severity”:”HIGH”,”vector”:”CVSS:3.1\/AV:L\/AC:L\/PR:L\/UI:N\/S:C\/C:H\/I:H\/A:H”,”version”:”3.1″},”cvss2″:{},”cvss3″:{“version”:””,”vectorString”:””,”baseScore”:0,”baseSeverity”:””,”attackVector”:””,”attackComplexity”:””,”privilegesRequired”:””,”userInteraction”:””,”scope”:””,”confidentialityImpact”:””,”integrityImpact”:””,”availabilityImpact”:””,”cvssV3″:{“version”:””,”vectorString”:””,”baseScore”:0,”baseSeverity”:””,”attackVector”:””,”attackComplexity”:””,”privilegesRequired”:””,”userInteraction”:””,”scope”:””,”confidentialityImpact”:””,”integrityImpact”:””,”availabilityImpact”:””}},”href”:”https:\/\/blog.talosintelligence.com\/tp-link-photoshop-openvpn-norton-vpn-vulnerabilities\/”,”category_name”:”News”,”post_link”:””,”product”:””,”version”:””,”vendor”:””,”ai_description”:””,”ai_severity”:””,”ai_vendor”:””,”ai_product”:””,”ai_version”:””,”ai_score”:0}<\/p>\n","protected":false},"excerpt":{"rendered":"
{“lastseen”:”2026-05-19T18:05:08″,”description”:”\\n\\nCisco Talos’ Vulnerability Discovery \\u0026 Research team recently disclosed eight vulnerabilities in TP-Link, and one each in Adobe Photoshop, OpenVPN,…<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[4],"tags":[6,8,41,12,15,13,7,69,11,5],"class_list":["post-55617","post","type-post","status-publish","format-standard","hentry","category-category_news","tag-cve","tag-cvss","tag-cvss-88","tag-exploit","tag-high","tag-news","tag-security","tag-talosblog","tag-tapic","tag-vulnerability"],"yoast_head":"\n