Vulnerability Details CVE-2025-8065
A buffer overflow vulnerability exists in the ONVIF XML parser of Tapo C200 V3. An unauthenticated attacker on the same local network segment can send specially crafted SOAP XML requests, causing memory overflow and device crash, resulting in denial-of-service (DoS).
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 6.7%
CVSS Severity
CVSS v3 Score 6.5
References
Products affected by CVE-2025-8065
-
cpe:2.3:h:tp-link:tapo_c200:3
-
cpe:2.3:o:tp-link:tapo_c200_firmware:1.3.11
-
cpe:2.3:o:tp-link:tapo_c200_firmware:1.3.13
-
cpe:2.3:o:tp-link:tapo_c200_firmware:1.3.14
-
cpe:2.3:o:tp-link:tapo_c200_firmware:1.3.15
-
cpe:2.3:o:tp-link:tapo_c200_firmware:1.3.3
-
cpe:2.3:o:tp-link:tapo_c200_firmware:1.3.4
-
cpe:2.3:o:tp-link:tapo_c200_firmware:1.3.5
-
cpe:2.3:o:tp-link:tapo_c200_firmware:1.3.7
-
cpe:2.3:o:tp-link:tapo_c200_firmware:1.3.9
-
cpe:2.3:o:tp-link:tapo_c200_firmware:1.4.1
-
cpe:2.3:o:tp-link:tapo_c200_firmware:1.4.2
-
cpe:2.3:o:tp-link:tapo_c200_firmware:1.4.4