Tp-Link Systems Inc Festa Gateways vulnerabilities
4 known vulnerabilities affecting tp-link_systems_inc/festa_gateways.
Total CVEs
4
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL2HIGH2
Vulnerabilities
Page 1 of 1
CVE-2025-6542P2CRITICALCVSS 9.8fixed in FR365 1.1.10, FR205 1.0.3, FR307 1.2.52025-10-21
CVE-2025-6542 [CRITICAL] CWE-78 CVE-2025-6542: An arbitrary OS command may be executed on the product by a remote unauthenticated attacker.
An arbitrary OS command may be executed on the product by a remote unauthenticated attacker.
nvd
CVE-2025-6541P2HIGHCVSS 8.8fixed in FR365 1.1.10, FR205 1.0.3, FR307 1.2.52025-10-21
CVE-2025-6541 [HIGH] CWE-78 CVE-2025-6541: An arbitrary OS command may be executed on the product by the user who can log in to the web managem
An arbitrary OS command may be executed on the product by the user who can log in to the web management interface.
nvd
CVE-2025-7851P3CRITICALCVSS 9.8fixed in FR365 1.1.10, FR205 1.0.3, FR307 1.2.52025-10-21
CVE-2025-7851 [CRITICAL] CWE-269 CVE-2025-7851: An attacker may obtain the root shell on the underlying OS system with the restricted conditions on
An attacker may obtain the root shell on the underlying OS system with the restricted conditions on Omada gateways.
nvd
CVE-2025-7850P3HIGHCVSS 7.2fixed in FR365 1.1.10, FR205 1.0.3, FR307 1.2.52025-10-21
CVE-2025-7850 [HIGH] CWE-78 CVE-2025-7850: A command injection vulnerability may be exploited after the admin's authentication on the web porta
A command injection vulnerability may be exploited after the admin's authentication on the web portal on Omada gateways.
nvd