This page lists publicly disclosed CVE vulnerabilities affecting tp-link g36_firmware (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-7851 | An attacker may obtain the root shell on the underlying OS system with the restricted conditions on Omada gateways. | f23511db-6c3e-4e32-a477-6aa17d310630 | 8.7 | 0.05% | 2025-10-21 | 2025-10-24 |
| CVE-2025-7850 | A command injection vulnerability may be exploited after the admin's authentication on the web portal on Omada gateways. | f23511db-6c3e-4e32-a477-6aa17d310630 | 9.3 | 0.66% | 2025-10-21 | 2025-10-24 |
| CVE-2025-6542 | An arbitrary OS command may be executed on the product by a remote unauthenticated attacker. | f23511db-6c3e-4e32-a477-6aa17d310630 | 9.3 | 0.15% | 2025-10-21 | 2025-10-24 |
| CVE-2025-6541 | An arbitrary OS command may be executed on the product by the user who can log in to the web management interface. | f23511db-6c3e-4e32-a477-6aa17d310630 | 8.6 | 0.05% | 2025-10-21 | 2025-10-24 |