threat
engine
.sh
Back
·
··:··
Home
/
Product
/
tp link er7206 firmware
Product
tp link er7206 firmware
14 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
Sort
Newest first
Oldest first
Highest CVSS
Lowest CVSS
Min CVSS
Any
4.0+
7.0+ (High)
9.0+ (Critical)
Published since
Reset
CVE-2025-9290
< 2.2.2
An authentication weakness was identified in Omada Controllers, Gateways and Access Points, controller-device adoption due to impr
5.9
MEDIUM
CVE-2025-7851
< 2.2.2
An attacker may obtain the root shell on the underlying OS system with the restricted conditions on Omada gateways.
9.8
CRITICAL
CVE-2025-7850
< 2.2.2
A command injection vulnerability may be exploited after the admin's authentication on the web portal on Omada gateways.
7.2
HIGH
CVE-2025-6542
< 2.2.2
An arbitrary OS command may be executed on the product by a remote unauthenticated attacker.
9.8
CRITICAL
CVE-2025-6541
< 2.2.2
An arbitrary OS command may be executed on the product by the user who can log in to the web management interface.
8.8
HIGH
CVE-2024-21827
all versions
A leftover debug code vulnerability exists in the cli_server debug functionality of Tp-Link ER7206 Omada Gigabit VPN Router 1.4.1
7.2
HIGH
CVE-2023-47618
all versions
A post authentication command execution vulnerability exists in the web filtering functionality of Tp-Link ER7206 Omada Gigabit VP
7.2
HIGH
CVE-2023-47617
all versions
A post authentication command injection vulnerability exists when configuring the web group member of Tp-Link ER7206 Omada Gigabit
7.2
HIGH
CVE-2023-47209
all versions
A post authentication command injection vulnerability exists in the ipsec policy functionality of Tp-Link ER7206 Omada Gigabit VPN
7.2
HIGH
CVE-2023-47167
all versions
A post authentication command injection vulnerability exists in the GRE policy functionality of Tp-Link ER7206 Omada Gigabit VPN R
7.2
HIGH
CVE-2023-46683
all versions
A post authentication command injection vulnerability exists when configuring the wireguard VPN functionality of Tp-Link ER7206 O
7.2
HIGH
CVE-2023-43482
all versions
A command execution vulnerability exists in the guest resource functionality of Tp-Link ER7206 Omada Gigabit VPN Router 1.3.0 buil
7.2
HIGH
CVE-2023-42664
all versions
A post authentication command injection vulnerability exists when setting up the PPTP global configuration of Tp-Link ER7206 Omada
7.2
HIGH
CVE-2023-36498
all versions
A post-authentication command injection vulnerability exists in the PPTP client functionality of Tp-Link ER7206 Omada Gigabit VPN
7.2
HIGH
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin