CVE-2025-7850

A command injection vulnerability may be exploited after the admin's authentication on the web portal on Omada gateways.

Published Date :

Last Modified :

Source :

The following products are affected by CVE-2025-7850 vulnerability.

Vendors	Products
Tp-link	Er605 Er605 Firmware Er706w Er706w-4g Er706w-4g Firmware Er706w Firmware Er707-m2 Er707-m2 Firmware Er7206 Er7206 Firmware Er7212pc Er7212pc Firmware Er7412-m2 Er7412-m2 Firmware Er8411 Er8411 Firmware Fr205 Fr205 Firmware Fr307-m2 Fr307-m2 Firmware Fr365 Fr365 Firmware G36 G36 Firmware G611 G611 Firmware Omada Gateways

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-7850.

URL	Resource
https://support.omadanetworks.com/en/document/108456/
https://www.forescout.com/blog/new-tp-link-router-vulnerabilities-a-primer-on-rooting-routers/
https://www.omadanetworks.com/us/business-networking/all-omada-router/
https://www.omadanetworks.com/us/business-networking/omada-pro-router-wired-router/
https://www.tp-link.com/us/business-networking/soho-festa-gateway/

Detailed values of each vector for above chart.

Attack Vector

Attack Complexity

Attack Requirements

Privileges Required

User Interaction

VS Confidentiality

VS Integrity

VS Availability

SS Confidentiality

SS Integrity

SS Availability

Detailed values of each vector for above chart.

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality Impact

Integrity Impact

Availability Impact