Tapo Security Vulnerabilities and Issues — Tapo CVE List

Lucene search

Tp-linkTapo

6 matches found

CVE•added 2023/09/25 11:15 p.m.•78 views

CVE-2023-38907

An issue in TPLink Smart Bulb Tapo series L530 before 1.2.4, L510E before 1.1.0, L630 before 1.0.4, P100 before 1.5.0, and Tapo Application 2.8.14 allows a remote attacker to replay old messages encrypted with a still valid session key.

7.5CVSS7.4AI score0.00253EPSS

CVE•added 2023/08/22 1:15 a.m.•63 views

CVE-2023-38908

An issue in TPLink Smart Bulb Tapo series L530 before 1.2.4, L510E before 1.1.0, L630 before 1.0.4, P100 before 1.5.0, and Tapo Application 2.8.14 allows a remote attacker to obtain sensitive information via the TSKEP authentication function.

6.5CVSS6.4AI score0.00056EPSS

CVE•added 2023/08/22 12:15 a.m.•61 views

CVE-2023-38906

An issue in TPLink Smart Bulb Tapo series L530 1.1.9, L510E 1.0.8, L630 1.0.3, P100 1.4.9, Smart Camera Tapo series C200 1.1.18, and Tapo Application 2.8.14 allows a remote attacker to obtain sensitive information via the authentication code for the UDP message.

6.5CVSS6.5AI score0.00053EPSS

CVE•added 2023/08/22 1:15 a.m.•56 views

CVE-2023-38909

6.5CVSS6.2AI score0.00051EPSS

CVE•added 2024/01/09 2:15 a.m.•45 views

CVE-2023-27098

TP-Link Tapo APK up to v2.12.703 uses hardcoded credentials for access to the login panel.

7.5CVSS7.5AI score0.00047EPSS

CVE•added 2023/12/28 3:15 a.m.•39 views

CVE-2023-34829

Incorrect access control in TP-Link Tapo before v3.1.315 allows attackers to access user credentials in plaintext.

6.5CVSS6.4AI score0.00021EPSS