CVE-2025-9290
MEDIUMTP-Link Omada Controller and Devices - Authentication Bypass via Predictable Salt in Adoption Traffic
Title source: llmDescription
An authentication weakness was identified in Omada Controllers, Gateways and Access Points, controller-device adoption due to improper handling of random values. Exploitation requires advanced network positioning and allows an attacker to intercept adoption traffic and forge valid authentication through offline precomputation, potentially exposing sensitive information and compromising confidentiality.
References (3)
Core 3
Core References
Various Sources patch
https://support.omadanetworks.com/us/download/
Various Sources patch
https://support.omadanetworks.com/en/download/
Various Sources vendor-advisory
https://support.omadanetworks.com/us/document/114950/
Scores
CVSS v3
5.9
EPSS
0.0003
EPSS Percentile
10.7%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
partial
Details
CWE
CWE-760
Status
published
Products (50)
tp-link/beam_bridge_5_ur_firmware
< 1.1.5
tp-link/dr3220v-4g_firmware
< 1.1.0
tp-link/dr3650v-4g_firmware
< 1.1.0
tp-link/dr3650v_firmware
< 1.1.0
tp-link/eap100-bridge_kit_firmware
< 1.0.3
tp-link/eap211_bridge_kit_firmware
< 1.1.4
tp-link/eap215_bridge_kit_firmware
< 1.1.4
tp-link/eap230-wall_firmware
< 3.3.1
tp-link/eap235-wall_firmware
< 3.3.1
tp-link/eap603-outdoor_firmware
< 1.5.1
... and 40 more
Published
Jan 23, 2026
Tracked Since
Feb 18, 2026