Lucene search
K

7 matches found

CVE
CVE
added 11 hours ago9 views

CVE-2026-13230

The CVE-2026-13230 entry concerns TP-Link Kasa EC70 v4 and EC71 v4. The issue lies in the local discovery mechanism, where geolocation-related data can be retrieved without authentication. Affects confidentiality only; no evidence of integrity or availability impact is reported. Exploitation cont...

5.3CVSS6.1AI score
Exploits0References5
EUVD
EUVD
added 11 hours ago7 views

EUVD-2026-44577

An information disclosure vulnerability was identified in TP-Link Kasa EC70 v4 and EC71 v4 in the local discovery mechanism, which exposes sensitive geolocation information without requiring authentication. This issue allows an attacker on the same local network to retrieve geolocation-related da...

5.3CVSS6.1AI score
Exploits0References5
CVE
CVE
added 11 hours ago11 views

CVE-2026-9770

Affected products: TP-Link Kasa EC70 v4 and EC71 v4 firmware. Issue: a static cryptographic private key is stored in a read-only filesystem shared across devices, allowing extraction from the firmware image. Impact: an unauthenticated attacker on the same network could use the embedded key in the...

8.6CVSS6.1AI score
Exploits0References5
RedhatCVE
RedhatCVE
added 2025/05/23 6:35 a.m.7 views

CVE-2024-35495

An Information Disclosure vulnerability in the Telemetry component in TP-Link Kasa KP125M V1.0.0 and Tapo P125M 1.0.0 Build 220930 Rel.143947 allows attackers to observe device state via observing network traffic...

4.3CVSS6.8AI score0.00186EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/09/30 12:0 a.m.17 views

CVE-2024-35495

An Information Disclosure vulnerability in the Telemetry component in TP-Link Kasa KP125M V1.0.0 and Tapo P125M 1.0.0 Build 220930 Rel.143947 allows attackers to observe device state via observing network traffic...

0.00186EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/09/30 12:0 a.m.14 views

CVE-2024-35495

An Information Disclosure vulnerability in the Telemetry component in TP-Link Kasa KP125M V1.0.0 and Tapo P125M 1.0.0 Build 220930 Rel.143947 allows attackers to observe device state via observing network traffic...

6.9AI score0.00186EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/06/20 12:0 a.m.10 views

PT-2024-32031 · Tp Link · Tp-Link Kasa Kp125M

Name of the Vulnerable Software and Affected Versions: TP-Link Kasa KP125M version 1.0.3 Description: An issue in the TP-Link MQTT Broker and API gateway allows attackers to establish connections by impersonating devices owned by other users. This impersonation can lead to unauthorized access...

8CVSS7AI score0.00351EPSS
Exploits0References8
Rows per page
Query Builder