PT-2025-42824 · Unknown · Omada Gateways
Published
2025-10-21
·
Updated
2025-10-26
·
CVE-2025-7850
CVSS v4.0
9.3
Critical
| Vector | AV:A/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:L/SI:L/SA:H |
Name of the Vulnerable Software and Affected Versions
Omada gateways (affected versions not specified)
Description
A command injection issue exists that may be triggered following administrative authentication on the web portal of Omada gateways. The issue allows for potential unauthorized execution of operating system commands. The vulnerability is rated as critical with a severity of 9.3. Exploitation requires administrative access to the web portal.
Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
OS Command Injection
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Omada Gateways