← Back to CVEs
CVE-2025-7375
MEDIUM6.5
Description
A denial-of-service (DoS) vulnerability was identified in Omada EAP610 v3. An attacker with adjacent network access can send crafted requests to cause the device’s HTTP service to crash. This results in temporary service unavailability until the device is rebooted. This issue affects Omada EAP610 firmware versions prior to 1.6.0.
CVE Details
CVSS v3.1 Score6.5
SeverityMEDIUM
CVSS VectorCVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Attack VectorADJACENT_NETWORK
ComplexityLOW
Privileges RequiredNONE
User InteractionNONE
Published3/5/2026
Last Modified3/9/2026
Sourcenvd
Honeypot Sightings0
Affected Products
tp-link:omada_eap610tp-link:omada_eap610_firmware
Weaknesses (CWE)
CWE-20
References
https://support.omadanetworks.com/en/product/eap610/v3/(f23511db-6c3e-4e32-a477-6aa17d310630)
https://support.omadanetworks.com/us/document/118100/(f23511db-6c3e-4e32-a477-6aa17d310630)
https://support.omadanetworks.com/us/product/eap610/v3/(f23511db-6c3e-4e32-a477-6aa17d310630)
IOC Correlations
No correlations recorded
This product uses data from the NVD API but is not endorsed or certified by the NVD.