CVE-2025-7375

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2025-7375
A denial-of-service (DoS) vulnerability was identified in Omada EAP610 v3. An attacker with adjacent network access can send crafted requests to cause the device’s HTTP service to crash. This results in temporary service unavailability until the device is rebooted. This issue affects Omada EAP610 firmware versions prior to 1.6.0.

6.5 /10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 2.8 / Impact : 3.6

Attack Vector ADJACENT_NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

References
Link Resource
https://support.omadanetworks.com/en/product/eap610/v3/ Product
https://support.omadanetworks.com/us/document/118100/ Vendor Advisory
https://support.omadanetworks.com/us/product/eap610/v3/ Product
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:tp-link:omada_eap610_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:tp-link:omada_eap610:3:*:*:*:*:*:*:*
History

09 Mar 2026, 17:54

Type Values Removed Values Added
CWE NVD-CWE-noinfo
CVSS v2 : unknown
v3 : unknown 		v2 : unknown
v3 : 6.5
Summary
  • (es) Se identificó una vulnerabilidad de denegación de servicio (DoS) en Omada EAP610 v3. Un atacante con acceso a la red adyacente puede enviar solicitudes manipuladas para provocar que el servicio HTTP del dispositivo falle. Esto provoca una indisponibilidad temporal del servicio hasta que el dispositivo se reinicia. Este problema afecta a las versiones de firmware de Omada EAP610 anteriores a 1.6.0.
First Time Tp-link
Tp-link omada Eap610 Firmware
Tp-link omada Eap610
CPE cpe:2.3:o:tp-link:omada_eap610_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:tp-link:omada_eap610:3:*:*:*:*:*:*:*
References () https://support.omadanetworks.com/en/product/eap610/v3/ - () https://support.omadanetworks.com/en/product/eap610/v3/ - Product
References () https://support.omadanetworks.com/us/document/118100/ - () https://support.omadanetworks.com/us/document/118100/ - Vendor Advisory
References () https://support.omadanetworks.com/us/product/eap610/v3/ - () https://support.omadanetworks.com/us/product/eap610/v3/ - Product

05 Mar 2026, 19:16

Type Values Removed Values Added
New CVE
Information

Published : 2026-03-05 19:16

Updated : 2026-03-09 17:54

NVD link : CVE-2025-7375

Mitre link : CVE-2025-7375

CVE.ORG link : CVE-2025-7375

JSON object : View

Products Affected

tp-link

  • omada_eap610
  • omada_eap610_firmware
CWE
CWE-20

Improper Input Validation

NVD-CWE-noinfo