Find notable cyber news and cases, enriched with sources, timelines, and signals.
Home Browse News Feed Stats Watchlists Beta About Contact

TP-Link security patch release for CVE-2025-7850

Security Patch Release
First reported
Last updated
Happening score
H score 27
1 unique sources, 1 articles

Summary

Hide ▲

TP-Link has released firmware patches for CVE-2025-7850 and CVE-2025-7851 in Omada and Festa VPN routers, addressing flaws that could enable command injection and unauthorized root access. The issues were tied to an incomplete fix for CVE-2024-21827 that left debug code and alternate attack paths reachable. Users were urged to apply the patches immediately because the vulnerabilities can lead to root compromise in affected router deployments.

Related Happenings

Cisco security patch release for CVE-2026-20182

Security Patch Release
First: 14.05.2026 20:45 Last: 14.05.2026 20:45 Sources 1

About this happening: Cisco released **updates** for **CVE-2026-20182**, a **maximum-severity authentication bypass** in **Catalyst SD-WAN Controller/Manager**, after the flaw was **exploited in limite...

Open Happening

Palo Alto Networks PAN-OS CVE-2026-0300 patch release

Security Patch Release
First: 06.05.2026 07:46 Last: 06.05.2026 07:46 Sources 1

About this happening: Palo Alto Networks is rolling out **patches** for **CVE-2026-0300**, a **critical PAN-OS zero-day** that has already been **exploited in the wild** against **PA and VM series fire...

Open Happening

Cisco security patch release for CVE-2026-20184

Security Patch Release
First: 16.04.2026 14:27 Last: 16.04.2026 14:27 Sources 1

About this happening: **Cisco** released patches for **four critical flaws** affecting **Identity Services Engine (ISE)**, **ISE-PIC**, and **Webex Services**, closing paths to **arbitrary code executi...

Open Happening

TP-Link security patch release for CVE-2025-15517

Security Patch Release
First: 25.03.2026 13:11 Last: 25.03.2026 13:11 Sources 1

About this happening: **TP-Link** released **security updates** for its **Archer NX** router series to close a critical authentication-bypass flaw that could let attackers upload firmware without loggi...

Open Happening

Citrix security patch release for CVE-2026-3055

Security Patch Release
First: 24.03.2026 07:59 Last: 24.03.2026 07:59 Sources 1

About this happening: Citrix's **NetScaler ADC** and **NetScaler Gateway** updates close **CVE-2026-3055** and **CVE-2026-4368**, including a flaw that could leak sensitive memory from configured appli...

Open Happening

Timeline

  1. 23.10.2025 14:30 2 articles · 7mo ago

    TP-Link releases firmware patches for Omada and Festa VPN router flaws

    Mitigation Patch Update

    Forescout’s Vedere Labs identified two vulnerabilities in TP-Link Omada and Festa VPN routers, tracked as CVE-2025-7850 and CVE-2025-7851, that could allow command injection and unauthorized root access; the issues were tied to an incomplete fix for CVE-2024-21827, residual debug code, and a WireGuard VPN settings private-key field that was not properly sanitized. TP-Link released firmware patches for the affected routers, and the researchers advised administrators to apply the updates immediately and harden management access.

    Show sources
    Open in new tab