TP-Link Patches Critical Flaw in Omada Gateways

TP-Link has issued firmware updates to fix four security vulnerabilities affecting its Omada gateway devices, including a critical pre-authentication operating system command injection flaw. The company acted swiftly as the TP-Link patches critical flaw aim to prevent attackers from executing arbitrary commands on impacted devices without user authentication.

The vulnerabilities affect a wide range of Omada models, including ER605, ER7206, and ER8411. Attackers could exploit the most severe flaw remotely, posing a significant risk to enterprise networks relying on these gateways for secure internet access. TP-Link identified the issues and released security patches to mitigate potential threats. Users are urged to update their devices immediately.

Security researchers highlighted the urgency of applying the latest updates, as the TP-Link patches critical flaw prevent unauthorized access and potential system compromise. The company has not confirmed reports of active exploitation in the wild.

Read the full official report at
https://www.bleepingcomputer.com/news/security/tp-link-warns-of-critical-command-injection-flaw-in-omada-gateways/