CVEs (4)
CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS |
|---|
1Tp Link 13Er605 Firmware Er706w 4g FirmwareEr706w Firmware+10 moreOct 24, 2025 Oct 21, 2025 8.7 HIGH· v4 9.8 CRITICAL· v3 N/A· v2 An attacker may obtain the root shell on the underlying OS system with the restricted conditions on Omada gateways. |
1Tp Link 13Er605 Firmware Er706w 4g FirmwareEr706w Firmware+10 moreOct 24, 2025 Oct 21, 2025 9.3 CRITICAL· v4 7.2 HIGH· v3 N/A· v2 A command injection vulnerability may be exploited after the admin's authentication on the web portal on Omada gateways. |
1Tp Link 13Er605 Firmware Er706w 4g FirmwareEr706w Firmware+10 moreOct 24, 2025 Oct 21, 2025 9.3 CRITICAL· v4 9.8 CRITICAL· v3 N/A· v2 An arbitrary OS command may be executed on the product by a remote unauthenticated attacker. |
1Tp Link 13Er605 Firmware Er706w 4g FirmwareEr706w Firmware+10 moreOct 24, 2025 Oct 21, 2025 8.6 HIGH· v4 8.8 HIGH· v3 N/A· v2 An arbitrary OS command may be executed on the product by the user who can log in to the web management interface. |