2 matches found
CVE-2023-35717
TP-Link Tapo C210 Password Recovery Authentication Bypass Vulnerability. This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of TP-Link Tapo C210 IP cameras. Authentication is not required to exploit this vulnerability. The specific flaw exists...
CVE-2023-35717
CVE-2023-35717 concerns the TP-Link Tapo C210 IP cameras, where the password recovery mechanism enables authentication bypass. The flaw stems from relying on the secrecy of the password derivation algorithm to generate a recovery password, allowing network-adjacent attackers to bypass authenticat...