TP-Link Omada EAP610 安全漏洞

The TP-Link Omada EAP610 is a wireless access point device manufactured by TP-Link Corporation. Versions of the TP-Link Omada EAP610 prior to version 1.6.0 contained security vulnerabilities. These vulnerabilities stemmed from improper handling of specially crafted requests by the HTTP service,...

TP-Link Omada Cloud Controller 安全漏洞

TP-Link Omada Cloud Controller is a central management software developed by TP-Link Corporation. There is a security vulnerability in TP-Link Omada Cloud Controller, which stems from lax Web security configurations. This vulnerability may allow bypass of cross-domain restrictions that are enforc...

TP-Link Omada controllers have security vulnerabilities

TP-Link Omada Controllers are a series of centralized management platforms developed by TP-Link Corporation. The TP-Link Omada Controllers have a security vulnerability, which stems from insecure direct object references, potentially leading to account hijacking...

TP-Link Omada gateways 安全漏洞

TP-Link Omada gateways is a security gateway from China P&L TP-Link. A security vulnerability exists in TP-Link Omada gateways that originates from a remote unauthenticated attacker who could execute arbitrary OS commands...

PT-2025-42823

Name of the Vulnerable Software and Affected Versions TP-Link Omada Gateway affected versions not specified Description An arbitrary OS command may be executed by a remote attacker. An unauthenticated attacker can potentially execute commands on the system. The issue allows for remote command...

EUVD-2018-2243

Malware in sbrugna...

EUVD-2020-4781

Malware in sbrugna...

EUVD-2024-46481

Malicious code in bioql PyPI...

EUVD-2024-46466

Malicious code in bioql PyPI...

EUVD-2024-16947

Malicious code in bioql PyPI...

CVE-2024-25139

In TP-Link Omada er605 1.0.1 through v2.6 2.2.3, a cloud-brd binary is susceptible to an integer overflow that leads to a heap-based buffer overflow. After heap shaping, an attacker can achieve code execution in the context of the cloud-brd binary that runs at the root level. This is fixed in...

The vulnerability of the /usr/bin/pppd component of the TP-Link Omada ER605 VPN router’s microprogramming software allows a malicious actor to execute arbitrary code under the root user context.

The vulnerability of the /usr/bin/pppd component of the TP-Link Omada ER605 VPN router software exists due to the lack of measures taken to neutralize specific elements used in the operating system command. Exploiting this vulnerability allows a malicious actor to execute arbitrary code under the...

The vulnerability of the executable file cmxddns in the microprogramming software of TP-Link Omada er605 allows a hacker to execute arbitrary code in the root context.

The vulnerability of the executable file cmxddnsd of the TP-Link Omada er605 microcontroller software is related to the use of weak security mechanisms. Exploiting this vulnerability allows a remote attacker to execute arbitrary code in the root context...

CVE-2024-5228

TP-Link Omada ER605 Comexe DDNS Response Handling Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of TP-Link Omada ER605 routers. Authentication is not required to exploit this...

CVE-2024-5227

TP-Link Omada ER605 PPTP VPN username Command Injection Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of TP-Link Omada ER605 routers. Authentication is not required to exploit this vulnerability...

CVE-2024-5242

CVE-2024-5242 affects TP-Link Omada ER605 routers. The vulnerability is a stack-based buffer overflow in the DDNS handling path (UpdateSvr1/CMDDNS) caused by improper validation of attacker-controlled data length before copying into a fixed-size stack buffer, enabling remote code execution as roo...

CVE-2024-5228

The vulnerability CVE-2024-5228 affects TP-Link Omada ER605 routers, caused by a heap-based buffer overflow in Comexe DDNS response handling. The flaw stems from insufficient validation of the length of user-supplied DNS data before copying it into a fixed-length heap buffer, enabling remote code...

TP-Link Omada ER605 安全漏洞

TP-LINK Omada ER605 is a VPN router from China P&L TP-LINK. A security vulnerability exists in the TP-Link Omada ER605. No information about this vulnerability is available at this time, please stay tuned to CNNVD or the vendor's announcement...

(Pwn2Own) TP-Link Omada ER605 Comexe DDNS Response Handling Heap-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of TP-Link Omada ER605 routers. Authentication is not required to exploit this vulnerability. However, devices are vulnerable only if configured to use the Comexe DDNS service. The specific fl...

(Pwn2Own) TP-Link Omada ER605 Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of TP-Link Omada ER605 routers. Authentication is not required to exploit this vulnerability. However, devices are vulnerable only if configured to use the Comexe DDNS service. The specific fl...