Lucene search
K

6 matches found

Malwarebytes
Malwarebytes
added 2026/04/08 1:31 p.m.7 views

Russian hacking group targets home and small office routers to spy on users

British security officials found that a group linked to the Russian military is spying on users of compromised Small Office/Home Office SOHO routers in a broad cyber espionage campaign. A Microsoft blog goes into the technical details of these attacks. The group, which we’ll refer to as APT28, bu...

5.9AI score
Exploits0
RedhatCVE
RedhatCVE
added 2026/02/06 7:34 p.m.5 views

CVE-2025-15557

An Improper Certificate Validation vulnerability in TP-Link Tapo H100 v1 and Tapo P100 v1 allows an on-path attacker on the same network segment to intercept and modify encrypted device-cloud communications. This may compromise the confidentiality and integrity of device-to-cloud communication,...

8.8CVSS5.4AI score0.00183EPSS
Exploits0References1
NVD
NVD
added 2026/02/05 6:16 p.m.11 views

CVE-2025-15557

An Improper Certificate Validation vulnerability in TP-Link Tapo H100 v1 and Tapo P100 v1 allows an on-path attacker on the same network segment to intercept and modify encrypted device-cloud communications. This may compromise the confidentiality and integrity of device-to-cloud communication,...

8.8CVSS0.00183EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/02/05 5:45 p.m.6 views

CVE-2025-15557

An Improper Certificate Validation vulnerability in TP-Link Tapo H100 v1 and Tapo P100 v1 allows an on-path attacker on the same network segment to intercept and modify encrypted device-cloud communications. This may compromise the confidentiality and integrity of device-to-cloud communication,...

7.5CVSS5.4AI score0.00183EPSS
Exploits0References6
EUVD
EUVD
added 2026/02/05 5:45 p.m.7 views

EUVD-2025-206824

An Improper Certificate Validation vulnerability in TP-Link Tapo H100 v1 and Tapo P100 v1 allows an on-path attacker on the same network segment to intercept and modify encrypted device-cloud communications. This may compromise the confidentiality and integrity of device-to-cloud communication,...

7.5CVSS5.4AI score0.00183EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2025/12/15 1:25 p.m.5 views

CVE-2025-36751

Encryption is missing on the configuration interface for Growatt ShineLan-X and MIC 3300TL-X. This allows an attacker with access to the network to intercept and potentially manipulate communication requests between the inverter and its cloud endpoint...

9.4CVSS6.8AI score0.00067EPSS
Exploits0References1
Rows per page
Query Builder