Tp-link

Tapo C200

5 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 0.22%
  • Veröffentlicht 24.06.2026 18:10:49
  • Zuletzt bearbeitet 29.06.2026 16:17:25

A denial-of-service (DoS) vulnerability has been identified in Tapo C200 v3 in the network packet handling logic due to improper handling of IPv4 fragmented packets.  An unauthenticated adjacent attacker can send crafted packets to cause excessive re...

  • EPSS 0.31%
  • Veröffentlicht 02.06.2026 16:13:36
  • Zuletzt bearbeitet 04.06.2026 17:41:24

TP-Link Tapo C200 v5 contains a stack-based buffer overflow flaw in RTSP authentication handling due to improper validation of Authorization header field lengths, which can be triggered by a crafted authentication request. Successful exploitation ca...

Medienbericht
  • EPSS 0.3%
  • Veröffentlicht 20.12.2025 00:43:39
  • Zuletzt bearbeitet 03.04.2026 22:16:24

The HTTPS service on Tapo C200 V3 exposes a connectAP interface without proper authentication. An unauthenticated attacker on the same local network segment can exploit this to modify the device’s Wi-Fi configuration, resulting in loss of connectivit...

Medienbericht
  • EPSS 0.22%
  • Veröffentlicht 20.12.2025 00:42:43
  • Zuletzt bearbeitet 08.01.2026 19:38:06

The HTTPS server on Tapo C200 V3 does not properly validate the Content-Length header, which can lead to an integer overflow. An unauthenticated attacker on the same local network segment can send crafted HTTPS requests to trigger excessive memory al...

Medienbericht
  • EPSS 0.48%
  • Veröffentlicht 20.12.2025 00:41:56
  • Zuletzt bearbeitet 03.04.2026 17:16:41

A stack-based buffer overflow vulnerability was identified in the ONVIF SOAP XML Parser in Tapo C200 v3 and C520WS v2.6. When processing XML tags with namespace prefixes, the parser fails to validate the prefix length before copying it to a fixed-siz...