TP-LINK CONTINUES TO PROVIDE SECURE PRODUCTS ACROSS AMERICA
- It’s business as usual at TP-Link. TP-Link products continue to be sold in the United States. Customers can continue to place orders for TP-Link products here and around the globe.
- Contrary to reports, we continue to do what we do best: supply secure and high-quality products to customers in the United States and beyond. TP-Link is open for America.
- Security is at the heart of TP-Link’s product strategy and corporate ethos.
- As a U.S. company, no government – including China – has access to or control over the design and production of our products.
- Our products and operations do not pose any threat to U.S. national security.
HERE ARE THE FACTS
- Vulnerabilities exist across the networking and communications industry. TP-Link can demonstrate its commitment to security through our track record of concrete actions and measurable results, which match or surpass those of our main competitors.
- TP-Link’s average weighted CVSS score—an industry-standard metric for vulnerability severity—is in line with that of other leading manufacturers, per 2024 data from individual vendor pages on CVEdetails.com. The average weighted scores for TP-Link and other leading manufacturers are listed in the below chart:
Average Weighted CVSS Score, 2024
The figure below shows the count of reported vulnerabilities associated with these vendors, against the CVSS scores (i.e., the severity) for those vulnerabilities. (A lower CVSS score indicates a less severe vulnerability.)
Weighted CVSS Count FY 2024
- Our product lines have among the lowest total counts of known exploited vulnerabilities (KEVs) among our industry peers, as shown in the below figure (current through September 30, 2025):
CISA Known Exploited Vulnerabilities (KEV) by Vendor
- TP-Link’s average weighted CVSS score—an industry-standard metric for vulnerability severity—is in line with that of other leading manufacturers, per 2024 data from individual vendor pages on CVEdetails.com. The average weighted scores for TP-Link and other leading manufacturers are listed in the below chart:
- Our product security team works with accredited third-party security labs to scrutinize our products and help us identify, prioritize, and promptly address potential vulnerabilities before they affect our customers.
- TP-Link carefully controls its supply chains, implements rigorous secure product development and testing processes, and takes timely and appropriate action to mitigate any vulnerabilities we become aware of.
- Since 2018, TP-Link has manufactured U.S.-destined networking products at a TP-Link-owned factory in Vietnam.
- Manufacturing products in our own factories with our own employees provides another layer of security and governance for the supply chain serving U.S. consumers.
- TP-Link is constantly assessing potential risks to its U.S. operations, customers, and supply chain.
WE’RE HERE FOR THE LONG HAUL
- TP-Link will continue to work with the Commerce Department – as we have for over a year – to ensure that we can continue serving American customers with secure network security devices far into the future.
- TP-Link strives to be a leader in IoT and networking security, while acknowledging that security is never final and always evolving.
- By working with industry experts, embracing government guidance and standards, and maintaining an unwavering focus on improvement, we ensure that our customers can trust our devices, today and in the future.
- All core product and data security functions across TP-Link are handled within the United States, with clear accountability to U.S. leadership and oversight structures.