Bleeping Computer

TP-Link warns of critical command injection flaw in Omada gateways

TP-Link is warning of two command injection vulnerabilities in Omada gateway devices that could be exploited to execute arbitrary OS commands. Omada gateways are marketed as full-stack solutions ...
Infosecurity-magazine.com

Major Vulnerabilities Found in TP-Link VPN Routers

Researchers at Forescout’s Vedere Labs have discovered two new vulnerabilities in TP-Link’s Omada and Festa VPN routers that could allow threat actors to perform command injection and unauthorized ...
Ars Technica

Report: US considers banning TP-Link routers over security flaws, ties to China

That's quite concerning, depending on how broad a brush the USG might ultimately paint with or the follow on effects. TP-Link isn't just soho, their SMB Omada lineup is the first and afaik only direct ...