CVE-2021-4045 TP-LINK Tapo C200 remote code execution vulnerability

🗓️ 07 Mar 2022 21:58:20Reported by INCIBEType

TP-LINK Tapo C200 camera firmware RCE vulnerabilit

Reporter	Title	Published	Views	Family All 21
0day.today	TP-Link Tapo c200 1.1.15 - Remote Code Execution Exploit	23 Sep 202200:00	–	zdt
GithubExploit	Exploit for Command Injection in Tp-Link Tapo_C200_Firmware	23 Nov 202521:12	–	githubexploit
GithubExploit	Exploit for Command Injection in Tp-Link Tapo_C200_Firmware	15 Nov 202114:48	–	githubexploit
GithubExploit	Exploit for Command Injection in Tp-Link Tapo_C200_Firmware	26 Dec 202308:20	–	githubexploit
GithubExploit	Exploit for Command Injection in Tp-Link Tapo_C200_Firmware	11 Jun 202618:05	–	githubexploit
GithubExploit	Exploit for Command Injection in Tp-Link Tapo_C200_Firmware	26 Dec 202308:20	–	githubexploit
GithubExploit	Exploit for Command Injection in Tp-Link Tapo_C200_Firmware	15 Nov 202114:48	–	githubexploit
ATTACKERKB	CVE-2021-4045	11 Feb 202211:00	–	attackerkb
BDU FSTEC	The vulnerability of TP-Link Tapo C200’s microprogrammed software lies in the lack of measures to clean incoming data inputs, allowing a intruder to gain full control over the device.	18 May 202200:00	–	bdu_fstec
Circl	CVE-2021-4045	2 Apr 202218:51	–	circl

[
  {
    "product": "Tapo C200",
    "vendor": "TP-Link",
    "versions": [
      {
        "lessThanOrEqual": "1.15",
        "status": "affected",
        "version": "1.15",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
incibe-cert	www.incibe-cert.es/en/early-warning/security-advisories/tp-link-tapo-c200-remote-code-execution-vulnerability
packetstormsecurity	www.packetstormsecurity.com/files/168472/TP-Link-Tapo-c200-1.1.15-Remote-Code-Execution.html

23 Sep 2022 15:06Current

9.7High risk

Vulners AI Score9.7

CVSS 3.19.8

EPSS0.91006

CWE-77