Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
tp-link tapo vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv3
CVE-2023-38906
An issue in TPLink Smart Bulb Tapo series L530 1.1.9, L510E 1.0.8, L630 1.0.3, P100 1.4.9, Smart Camera Tapo series C200 1.1.18, and Tapo Application 2.8.14 allows a remote malicious user to obtain sensitive information via the authentication code for the UDP message.
Tp-link Tapo 2.8.14
Tp-link Tapo L530e Firmware 1.0.0
7.5
CVSSv3
CVE-2023-38907
An issue in TPLink Smart Bulb Tapo series L530 prior to 1.2.4, L510E prior to 1.1.0, L630 prior to 1.0.4, P100 prior to 1.5.0, and Tapo Application 2.8.14 allows a remote malicious user to replay old messages encrypted with a still valid session key.
Tp-link Tapo L530e Firmware 1.0.0
Tp-link Tapo 2.8.14
6.5
CVSSv3
CVE-2023-38908
An issue in TPLink Smart Bulb Tapo series L530 prior to 1.2.4, L510E prior to 1.1.0, L630 prior to 1.0.4, P100 prior to 1.5.0, and Tapo Application 2.8.14 allows a remote malicious user to obtain sensitive information via the TSKEP authentication function.
Tp-link Tapo 2.8.14
Tp-link Tapo L530e Firmware 1.0.0
6.5
CVSSv3
CVE-2023-38909
An issue in TPLink Smart Bulb Tapo series L530 prior to 1.2.4, L510E prior to 1.1.0, L630 prior to 1.0.4, P100 prior to 1.5.0, and Tapo Application 2.8.14 allows a remote malicious user to obtain sensitive information via the IV component in the AES128-CBC function.
Tp-link Tapo 2.8.14
Tp-link Tapo L530e Firmware 1.0.0
7.5
CVSSv3
CVE-2023-27098
TP-Link Tapo APK up to v2.12.703 uses hardcoded credentials for access to the login panel.
Tp-link Tapo
6.5
CVSSv3
CVE-2023-34829
Incorrect access control in TP-Link Tapo before v3.1.315 allows malicious users to access user credentials in plaintext.
Tp-link Tapo
1 Github repository
9.8
CVSSv3
CVE-2021-4045
TP-Link Tapo C200 IP camera, on its 1.1.15 firmware version and below, is affected by an unauthenticated RCE vulnerability, present in the uhttpd binary running by default as root. The exploitation of this vulnerability allows an malicious user to take full control of the camera.
Tp-link Tapo C200 Firmware
15 Github repositories
7.5
CVSSv3
CVE-2022-37255
TP-Link Tapo C310 1.3.0 devices allow access to the RTSP video feed via credentials of User --- and Password TPL075526460603.
Tp-link Tapo C310 Firmware 1.3.0
7.5
CVSSv3
CVE-2023-42189
Insecure Permissions vulnerability in Connectivity Standards Alliance Matter Official SDK v.1.1.0.0 , Nanoleaf Light strip v.3.5.10, Govee LED Strip v.3.00.42, switchBot Hub2 v.1.0-0.8, Phillips hue hub v.1.59.1959097030, and yeelight smart lamp v.1.12.69 allows a remote maliciou...
Tapo Mini Smart Wi-fi Plug Firmware -
Nanoleaf Lightstrip Firmware 3.5.10
Govee Led Strip Firmware 3.00.42
Switchbot Hub2 Firmware 1.0-0.8
Phillips Hue Bridge Firmware 1.59.1959097030
Yeelight Smart Lamp Firmware 1.12.69
Tp-link Smart Plug Firmware -
Orein Smart Bulb Firmware -
Eve Eve Door And Window Firmware -
6.5
CVSSv3
CVE-2023-39610
An issue in TP-Link Tapo C100 v1.1.15 Build 211130 Rel.15378n(4555) and before allows malicious users to cause a Denial of Service (DoS) via supplying a crafted web request.
Tp-link Tapo C100 Firmware
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
path traversal
CVE-2024-33545
CVE-2024-35725
CVE-2024-32704
overflow
file upload
CVE-2024-0230
CVE-2024-32705
CVE-2024-23692
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »