Critical severity9.8NVD Advisory· Published Mar 13, 2026· Updated Apr 2, 2026

CVE-2026-1668

Description

The web interface on multiple Omada switches does not adequately validate certain external inputs, which may lead to out-of-bound memory access when processing crafted requests. Under specific conditions, this flaw may result in unintended command execution.<br>An unauthenticated attacker with network access to the affected interface may cause memory corruption, service instability, or information disclosure. Successful exploitation may allow remote code execution or denial-of-service.

Affected products

TP-Link/Omada Sg2005p Pd Firmware
cpe:2.3:o:tp-link:omada_sg2005p-pd_firmware:*:*:*:*:*:*:*:*
Range: >=1.0.0,<1.0.19
TP-Link/Omada Sg2008 Firmware
cpe:2.3:o:tp-link:omada_sg2008_firmware:*:*:*:*:*:*:*:*
Range: >=4.20.0,<4.20.17
TP-Link/Omada Sg2008p Firmware
cpe:2.3:o:tp-link:omada_sg2008p_firmware:*:*:*:*:*:*:*:*
Range: >=3.20.0,<3.20.17
TP-Link/Omada Sg2016p Firmware
cpe:2.3:o:tp-link:omada_sg2016p_firmware:*:*:*:*:*:*:*:*
Range: >=1.20.0,<1.20.17
TP-Link/Omada Sg2210mp Firmware
cpe:2.3:o:tp-link:omada_sg2210mp_firmware:*:*:*:*:*:*:*:*
Range: >=4.20.0,<4.20.18
TP-Link/Omada Sg2210p Firmware
cpe:2.3:o:tp-link:omada_sg2210p_firmware:*:*:*:*:*:*:*:*
Range: >=5.20.0,<5.20.18
TP-Link/Omada Sg2210xmp M2 Firmware
cpe:2.3:o:tp-link:omada_sg2210xmp-m2_firmware:*:*:*:*:*:*:*:*
Range: >=1.0.0,<1.0.19
TP-Link/Omada Sg2218 Firmware
cpe:2.3:o:tp-link:omada_sg2218_firmware:*:*:*:*:*:*:*:*
Range: >=1.20.0,<1.20.17
TP-Link/Omada Sg2218p Firmware
cpe:2.3:o:tp-link:omada_sg2218p_firmware:*:*:*:*:*:*:*:*
Range: >=1.20.0,<1.20.17
TP-Link/Omada Sg2428lp Firmware
cpe:2.3:o:tp-link:omada_sg2428lp_firmware:*:*:*:*:*:*:*:*
Range: >=1.0.0,<1.0.13
TP-Link/Omada Sg2428p Firmware
cpe:2.3:o:tp-link:omada_sg2428p_firmware:*:*:*:*:*:*:*:*
Range: >=5.20.0,<5.20.20
TP-Link/Omada Sg2452lp Firmware
cpe:2.3:o:tp-link:omada_sg2452lp_firmware:*:*:*:*:*:*:*:*
Range: >=1.0.0,<1.0.13
TP-Link/Omada Sg3210 Firmware
cpe:2.3:o:tp-link:omada_sg3210_firmware:*:*:*:*:*:*:*:*
Range: >=3.20.0,<3.20.17
TP-Link/Omada Sg3210xhp M2 Firmware
cpe:2.3:o:tp-link:omada_sg3210xhp-m2_firmware:*:*:*:*:*:*:*:*
Range: >=3.0.0,<3.0.21
TP-Link/Omada Sg3210x M2 Firmware
cpe:2.3:o:tp-link:omada_sg3210x-m2_firmware:*:*:*:*:*:*:*:*
Range: >=1.20.0,<1.20.1
TP-Link/Omada Sg3218xp M2 Firmware
cpe:2.3:o:tp-link:omada_sg3218xp-m2_firmware:*:*:*:*:*:*:*:*
Range: >=1.0.0,<1.0.19
TP-Link/Omada Sg3428 Firmware
cpe:2.3:o:tp-link:omada_sg3428_firmware:*:*:*:*:*:*:*:*
Range: >=2.30.0,<2.30.16
TP-Link/Omada Sg3428mp Firmware
cpe:2.3:o:tp-link:omada_sg3428mp_firmware:*:*:*:*:*:*:*:*
Range: >=6.20.0,<6.20.20
TP-Link/Omada Sg3428xf Firmware
cpe:2.3:o:tp-link:omada_sg3428xf_firmware:*:*:*:*:*:*:*:*
Range: >=1.20.0,<1.20.16
TP-Link/Omada Sg3428x Firmware
cpe:2.3:o:tp-link:omada_sg3428x_firmware:*:*:*:*:*:*:*:*
Range: >=1.30.0,<1.30.17
TP-Link/Omada Sg3428x M2 Firmware
cpe:2.3:o:tp-link:omada_sg3428x-m2_firmware:*:*:*:*:*:*:*:*
Range: >=1.20.0,<1.20.18
TP-Link/Omada Sg3428xmp Firmware
cpe:2.3:o:tp-link:omada_sg3428xmp_firmware:*:*:*:*:*:*:*:*
Range: >=3.20.0,<3.20.21
TP-Link/Omada Sg3428xmpp Firmware
cpe:2.3:o:tp-link:omada_sg3428xmpp_firmware:*:*:*:*:*:*:*:*
Range: >=1.0.0,<1.0.16
TP-Link/Omada Sg3428xpp M2 Firmware
cpe:2.3:o:tp-link:omada_sg3428xpp-m2_firmware:*:*:*:*:*:*:*:*
Range: >=1.20.0,<1.20.19
TP-Link/Omada Sg3452 Firmware
cpe:2.3:o:tp-link:omada_sg3452_firmware:*:*:*:*:*:*:*:*
Range: >=1.20.0,<1.20.17
TP-Link/Omada Sg3452p Firmware
cpe:2.3:o:tp-link:omada_sg3452p_firmware:*:*:*:*:*:*:*:*
Range: >=3.30.0,<3.30.17
TP-Link/Omada Sg3452x Firmware
cpe:2.3:o:tp-link:omada_sg3452x_firmware:*:*:*:*:*:*:*:*
Range: >=1.20.0,<1.20.18
TP-Link/Omada Sg3452xmpp Firmware
cpe:2.3:o:tp-link:omada_sg3452xmpp_firmware:*:*:*:*:*:*:*:*
Range: >=1.0.0,<1.0.15
TP-Link/Omada Sg3452xp Firmware
cpe:2.3:o:tp-link:omada_sg3452xp_firmware:*:*:*:*:*:*:*:*
Range: >=2.20.0,<2.20.20
TP-Link/Omada Sl2428p Firmware
cpe:2.3:o:tp-link:omada_sl2428p_firmware:*:*:*:*:*:*:*:*
Range: >=6.20.0,<6.20.18
TP-Link/Omada Sx3008f Firmware
cpe:2.3:o:tp-link:omada_sx3008f_firmware:*:*:*:*:*:*:*:*
Range: >=1.20.0,<1.20.12
TP-Link/Omada Sx3016f Firmware
cpe:2.3:o:tp-link:omada_sx3016f_firmware:*:*:*:*:*:*:*:*
Range: >=1.20.0,<1.20.16
TP-Link/Omada Sx3032f Firmware
cpe:2.3:o:tp-link:omada_sx3032f_firmware:*:*:*:*:*:*:*:*
Range: >=1.0.0,<1.0.15
TP-Link/Omada Sx3206hpp Firmware
cpe:2.3:o:tp-link:omada_sx3206hpp_firmware:*:*:*:*:*:*:*:*
Range: >=1.20.0,<1.20.12
TP-Link/Omada Sx3832 Firmware
cpe:2.3:o:tp-link:omada_sx3832_firmware:*:*:*:*:*:*:*:*
Range: >=1.0.0,<1.0.12
TP-Link/Omada Sx3832mpp Firmware
cpe:2.3:o:tp-link:omada_sx3832mpp_firmware:*:*:*:*:*:*:*:*
Range: >=1.0.0,<1.0.11
TP-Link/Omada Tl Sg2428p Firmware
cpe:2.3:o:tp-link:omada_tl-sg2428p_firmware:*:*:*:*:*:*:*:*
Range: >=4.0.0,<4.0.26
TP-Link/Omada Tl Sg3428mp Firmware
cpe:2.3:o:tp-link:omada_tl-sg3428mp_firmware:*:*:*:*:*:*:*:*
Range: >=5.0.0,<5.0.25
TP-Link/Omada Tl Sg3452p Firmware
cpe:2.3:o:tp-link:omada_tl-sg3452p_firmware:*:*:*:*:*:*:*:*
Range: >=3.0.0,<3.0.22

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

support.omadanetworks.com/us/document/118794/nvdVendor Advisory
support.omadanetworks.com/au/download/firmware/nvdProduct
support.omadanetworks.com/en/download/firmware/nvdProduct
support.omadanetworks.com/us/product/nvdProduct

News mentions

No linked articles in our index yet.

cvss	0.637
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000