Omada Pro Logo official website Vigi Logo official website
Contact Us
United States / English
Store

Security Advisory on Input Validation Vulnerability on Multiple Omada Switches (CVE-2026-1668)

Security Vulnerability
BookmarksCopy Link
03-13-2026

Vulnerability and Impact Description:

CVE-2026-1668:

The web interface does not adequately validate certain external inputs, which may lead to out-of-bound memory access when processing crafted requests. Under specific conditions, this flaw may result in unintended command execution.

An unauthenticated attacker with network access to the affected interface may cause memory corruption, service instability, or information disclosure. Successful exploitation may allow remote code execution or denial-of-service.

CVSS v4.0 Score: 7.7 / High

CVSS:4.0/AV:A/AC:H/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Affected Products/Versions and Fixes:

Affected Models

Hardware Branch

Fixed Version

SG2005P‑PD

1.x

1.0.19 Build 20260121 Rel.53429

SG2008

4.2x

4.20.17 Build 20260121 Rel.53429

SG2008

4.3x

4.30.1 Build 20260127 Rel.32017

SG2008P

3.2x

3.20.17 Build 20260121 Rel.53429

SG2008P

3.3x

3.30.1 Build 20260127 Rel.32017

SG2016P

1.2x

1.20.17 Build 20260121 Rel.53429

SG2016P

1.3x

1.30.1 Build 20260127 Rel.32017

SG2210MP

4.2x

4.20.18 Build 20260121 Rel.53429

SG2210MP

5.2x

5.20.1 Build 20260127 Rel.32017

SG2210MP

5.x

5.0.15 Build 20260121 Rel.53429

SG2210P

5.3x

5.30.1 Build 20260127 Rel.32017

SG2210P

5.2x

5.20.18 Build 20260121 Rel.53429

SG2210XMP‑M2

1.x

1.0.19 Build 20260121 Rel.53314

SG2218

1.2x

1.20.17 Build 20260121 Rel.53429

SG2218

1.3x

1.30.1 Build 20260127 Rel.32017

SG2218P

1.2x

1.20.17 Build 20260121 Rel.53429

SG2218P

2.2x

2.20.2 Build 20260127 Rel.32017

SG2218P

2.x

2.0.14 Build 20260121 Rel.53429

SG2428LP

1.x

1.0.15 Build 20260121 Rel.53429

SG2428P

5.2x

5.20.20 Build 20260121 Rel.53429

SG2428P

5.3x

5.30.16 Build 20260121 Rel.53429

SG2452LP

1.x

1.0.13 Build 20260121 Rel.54132

SG3210

3.2x

3.20.17 Build 20260121 Rel.53429

SG3210

3.3x

3.30.1 Build 20260206 Rel.33103

SG3210XHP‑M2

3.x

3.0.21 Build 20260121 Rel.53314

SG3210X‑M2

1.2x

1.20.1 Build 20260129 Rel.13605

SG3218XP‑M2

1.x

1.0.19 Build 20260121 Rel.53314

SG3428

2.3x

2.30.16 Build 20260113 Rel.67732

SG3428

2.4x

2.40.1 Build 20260127 Rel.39545

SG3428MP

6.2x

6.20.20 Build 20260113 Rel.67732

SG3428MP

6.3x

6.30.1 Build 20260127 Rel.39545

SG3428X

1.3x

1.30.17 Build 20260113 Rel.67732

SG3428X

1.4x

1.40.1 Build 20260127 Rel.39545

SG3428XF

1.2x

1.20.16 Build 20260113 Rel.67732

SG3428XF

1.3x

1.30.1 Build 20260127 Rel.39545

SG3428X‑M2

1.2x

1.20.18 Build 20260121 Rel.54271

SG3428XMP

3.2x

3.20.21 Build 20260113 Rel.67732

SG3428XMP

3.3x

3.30.1 Build 20260127 Rel.39545

SG3428XMPP

1.2x

1.20.1 Build 20260127 Rel.39545

SG3428XMPP

1.x

1.0.16 Build 20260113 Rel.67732

SG3428XPP‑M2

1.2x

1.20.19 Build 20260121 Rel.54271

SG3452

1.2x

1.20.17 Build 20260121 Rel.54132

SG3452

1.3x

1.30.1 Build 20260128 Rel.7041

SG3452P

3.3x

3.30.17 Build 20260121 Rel.54132

SG3452P

3.4x

3.40.1 Build 20260128 Rel.7041

SG3452X

1.2x

1.20.18 Build 20260121 Rel.55833

SG3452X

1.3x

1.30.1 Build 20260128 Rel.8721

SG3452XMPP

1.x

1.0.15 Build 20260121 Rel.55833

SG3452XP

2.2x

2.20.20 Build 20260121 Rel.55833

SG3452XP

2.3x

2.30.1 Build 20260128 Rel.8721

SL2428P

6.2x

6.20.18 Build 20260121 Rel.53429

SX3008F

1.2x

1.20.12 Build 20251031

SX3016F

1.2x

1.20.16 Build 20260121 Rel.57953

SX3016F

1.3x

1.30.1 Build 20260129 Rel.8831

SX3032F

1.x

1.0.15 Build 20260121 Rel.56907

SX3206HPP

1.2

1.20.12 Build 20251031

SX3832

1.x

1.0.12 Build 20260121 Rel.56907

SX3832MPP

1.x

1.0.11 Build 20260121 Rel.56907

TL-SG2428P

4.x

4.0.26 Build 20260121 Rel.53429

TL‑SG3428MP

5.x

5.0.25 Build 20260113 Rel.67732

TL‑SG3452P

3.0

3.0.22 Build 20260121 Rel.54132

Recommendations:

We strongly recommend that users with affected devices update to the latest available firmware version.

Users in Standalone mode can update firmware through the device’s local web interface.
Users in Controller mode (Omada Controller or Omada app) will be notified of available updates automatically and can apply them directly through the controller.

Alternatively, firmware can also be downloaded on the Omada website:

US: https://support.omadanetworks.com/us/download/firmware/

EN: https://support.omadanetworks.com/en/download/firmware/

AU: https://support.omadanetworks.com/au/download/firmware/

Disclaimer:

If you do not take all recommended actions, this vulnerability will remain. TP-Link cannot bear any responsibility for consequences that could have been avoided by following this advisory.

Please Rate this Document

SubscribeTP-Link takes your privacy seriously. For further details on TP-Link's privacy practices, see TP-Link's Privacy Policy.

Be The First To Get Exclusive Deals & News

Email Error

Let's Connect

About
Press
Buy Now
Partners
Learning Center
Tools
TP-Link Omada Omada Pro VIGI
United States / English

©2026 TP-Link Systems Inc. and its affiliated companies. All rights reserved.

TP-Link, Tapo, Kasa, Omada, VIGI, Aginet, HomeShield, and Tapo Care branded products are products of TP-Link Systems Inc. or its affiliates.
Note: Some services and materials may require you to accept additional terms and conditions before access or use.
References to "TP-Link" may include TP-Link Systems Inc., its subsidiaries, or business units within the TP-Link corporate structure, as applicable.
The materials provided, including but not limited to press releases, presentations, blog posts, and webcasts, are current as of the date of publication and may be superseded by subsequent updates.

As explained further in our website Privacy Policy, we allow certain advertising partners to collect information from our website through cookies and similar technologies to deliver ads which are more relevant to you, and assist us with advertising-related analytics (e.g., measuring ad performance, optimizing our ad campaigns). This may be considered "selling" or "sharing"/disclosure of personal data for "targeted advertising" as defined by certain U.S. state laws. To opt out of these activities, press "Opt Out" below. If the toggle below for "Targeted Advertising and 'Sale' Cookies" is to the left, you are already opted out and you can close these preferences.

Please note that your choice will apply only to your current device/browser. You must indicate your choice on each device and browser you use to access our website. If you clear your cookies or your browser is set to do so, you must opt out again.

Your Privacy Choices

As explained further in our website Privacy Policy, we allow certain advertising partners to collect information from our website through cookies and similar technologies to deliver ads which are more relevant to you, and assist us with advertising-related analytics (e.g., measuring ad performance, optimizing our ad campaigns). This may be considered "selling" or "sharing"/disclosure of personal data for "targeted advertising" as defined by certain U.S. state laws. To opt out of these activities, press "Opt Out" below. If the toggle below for "Targeted Advertising and 'Sale' Cookies" is to the left, you are already opted out and you can close these preferences.

Please note that your choice will apply only to your current device/browser. You must indicate your choice on each device and browser you use to access our website. If you clear your cookies or your browser is set to do so, you must opt out again.

Necessary Cookies

These cookies are necessary for the website to function and cannot be switched off.

TP-Link

SESSION, JSESSIONID, accepted_local_switcher, tp_privacy_banner, tp_privacy_base, tp_privacy_marketing, tp_top-banner, tp_popup-bottom, tp_popup-center, tp_popup-right-middle, tp_popup-right-bottom, tp_productCategoryType

Youtube

id, VISITOR_INFO1_LIVE, LOGIN_INFO, SIDCC, SAPISID, APISID, SSID, SID, YSC, __Secure-1PSID, __Secure-1PAPISID, __Secure-1PSIDCC, __Secure-3PSID, __Secure-3PAPISID, __Secure-3PSIDCC, 1P_JAR, AEC, NID, OTZ

Zendesk

OptanonConsent, __cf_bm, __cfruid, _cfuvid, _help_center_session, _pendo___sg__.<container-id>, _pendo_meta.<container-id>, _pendo_visitorId.<container-id>, _zendesk_authenticated, _zendesk_cookie, _zendesk_session, _zendesk_shared_session, ajs_anonymous_id, cf_clearance

Targeted Advertising and "Sale" Cookies

These cookies allow targeted ads or the "sale" of personal data (toggle to the left to opt out).

Analytics cookies enable us to analyze your activities on our and other websites in order to improve and adapt the functionality of our website and our ad campaigns.

Advertising cookies can be set through our website by our advertising partners in order to create a profile of your interests and to show you relevant advertisements on other websites.

Google Analytics & Google Tag Manager

_gid, _ga_<container-id>, _ga, _gat_gtag_<container-id>

Google Ads & DoubleClick

test_cookie, _gcl_au

Meta Pixel

_fbp

Crazy Egg

cebsp_, _ce.s, _ce.clock_data, _ce.clock_event, cebs

Linkedin

lidc, AnalyticsSyncHistory, UserMatchHistory, bcookie, li_sugr, ln_or

Reddit

_rdt_uuid

Welcome to Our Website! If you stay on our site, we and our third-party partners use cookies, pixels, and other tracking technologies to better understand how you use our site, provide and improve our services, and personalize your experience and ads based on your interests. Learn more in your privacy choices.