Tp-Link: Security Vulnerabilities
Multiple TP-LINK products allow a network-adjacent unauthenticated attacker with access to the product to execute arbitrary OS commands. The affected device, with the initial configuration, allows login only from the LAN port or Wi-Fi.
CVSS Score
8.8
EPSS Score
0.002
Published
2024-01-11
TP-Link Tapo APK up to v2.12.703 uses hardcoded credentials for access to the login panel.
CVSS Score
7.5
EPSS Score
0.0
Published
2024-01-09
Incorrect access control in TP-Link Tapo before v3.1.315 allows attackers to access user credentials in plaintext.
CVSS Score
6.5
EPSS Score
0.0
Published
2023-12-28
An issue in TP-Link Tapo C100 v1.1.15 Build 211130 Rel.15378n(4555) and before allows attackers to cause a Denial of Service (DoS) via supplying a crafted web request.
CVSS Score
6.5
EPSS Score
0.001
Published
2023-10-31
TP-LINK TL-WR886N V7.0_3.0.14_Build_221115_Rel.56908n.bin was discovered to contain a stack overflow via the function uninstallPluginReqHandle.
CVSS Score
9.8
EPSS Score
0.002
Published
2023-10-25
TP-LINK TL-WR886N V7.0_3.0.14_Build_221115_Rel.56908n.bin was discovered to contain a stack overflow via the function RegisterRegister.
CVSS Score
9.8
EPSS Score
0.002
Published
2023-10-25
TP-LINK device TL-WR886N V7.0_3.0.14_Build_221115_Rel.56908n.bin and TL-WDR7660 2.0.30 were discovered to contain a stack overflow via the function deviceInfoRegister.
CVSS Score
9.8
EPSS Score
0.003
Published
2023-10-25
TP-LINK TL-WR886N V7.0_3.0.14_Build_221115_Rel.56908n.bin was discovered to contain a stack overflow via the function upgradeInfoRegister.
CVSS Score
9.8
EPSS Score
0.003
Published
2023-10-25
TP-LINK TL-WR886N V7.0_3.0.14_Build_221115_Rel.56908n.bin was discovered to contain a stack overflow via the function loginRegister.
CVSS Score
9.8
EPSS Score
0.003
Published
2023-10-25
TP-LINK TL-WR886N V7.0_3.0.14_Build_221115_Rel.56908n.bin was discovered to contain a stack overflow via the function resetCloudPwdRegister.
CVSS Score
9.8
EPSS Score
0.003
Published
2023-10-25