CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2025-8627

The TP-Link KP303 Smartplug can be issued unauthenticated protocol commands that may cause unintended power-off condition and potential information leak. This issue affects TP-Link KP303 (US) Smartplug: before 1.1.0.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 4.2%

CVSS Severity

CVSS v3 Score 8.8

References

https://www.tp-link.com/us/support/faq/4619/

Products affected by CVE-2025-8627

Tp-Link » Kp303 » Version: 2.0

cpe:2.3:h:tp-link:kp303:2.0
Tp-Link » Kp303 Firmware » Version: Any

cpe:2.3:o:tp-link:kp303_firmware:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-8627

Products

Pricing

Contact Us