Vulnerability in Omada Gateways by TP-Link
CVE-2025-7851

8.7HIGH

Key Information:

Vendor

Tp-link Systems Inc.

Status
Omada Gateways
Festa Gateways
Omada Pro Gateways
Vendor
CVE Published:
21 October 2025

What is CVE-2025-7851?

A security flaw in certain Omada gateways allows attackers to potentially gain unauthorized root shell access to the underlying operating system. This vulnerability could be exploited under specific conditions, posing a significant risk to network security. It is crucial for users and administrators to ensure their systems are updated and to follow recommended security practices to mitigate potential impacts.

Affected Version(s)

Festa gateways 0

Omada gateways 0

Omada Pro gateways 0

References

https://support.omadanetworks.com/en/document/108456/
vendor-advisory
https://www.omadanetworks.com/us/business-networking/all-...
product
https://www.omadanetworks.com/us/business-networking/omad...
product

CVSS V4

Score:
8.7
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Adjacent Network
Attack Complexity:
High
Attack Required:
Physical
Privileges Required:
Undefined
User Interaction:
None

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.
CVE-2025-7851 : Vulnerability in Omada Gateways by TP-Link