Tapo Security Vulnerabilities and Issues — Tapo CVE List

cve

CVE-2023-34829

Incorrect access control in TP-Link Tapo before v3.1.315 allows attackers to access user credentials in plaintext.

6.5CVSS

6.4AI Score

0.001EPSS

2023-12-28 03:15 AM

19

cve

CVE-2023-38906

An issue in TPLink Smart Bulb Tapo series L530 1.1.9, L510E 1.0.8, L630 1.0.3, P100 1.4.9, Smart Camera Tapo series C200 1.1.18, and Tapo Application 2.8.14 allows a remote attacker to obtain sensitive information via the authentication code for the UDP message.

6.5CVSS

6.5AI Score

0.001EPSS

2023-08-22 12:15 AM

49

cve

CVE-2023-38907

An issue in TPLink Smart Bulb Tapo series L530 before 1.2.4, L510E before 1.1.0, L630 before 1.0.4, P100 before 1.5.0, and Tapo Application 2.8.14 allows a remote attacker to replay old messages encrypted with a still valid session key.

7.5CVSS

7.4AI Score

0.001EPSS

2023-09-25 11:15 PM

57

cve

CVE-2023-38908

An issue in TPLink Smart Bulb Tapo series L530 before 1.2.4, L510E before 1.1.0, L630 before 1.0.4, P100 before 1.5.0, and Tapo Application 2.8.14 allows a remote attacker to obtain sensitive information via the TSKEP authentication function.

6.5CVSS

6.4AI Score

0.001EPSS

2023-08-22 01:15 AM

48

cve

CVE-2023-38909

An issue in TPLink Smart Bulb Tapo series L530 before 1.2.4, L510E before 1.1.0, L630 before 1.0.4, P100 before 1.5.0, and Tapo Application 2.8.14 allows a remote attacker to obtain sensitive information via the IV component in the AES128-CBC function.

6.5CVSS

6.2AI Score

0.001EPSS

2023-08-22 01:15 AM

43

Tapo Security Vulnerabilities - 2023