Vulnerabilities > CVE-2023-38908 - Unspecified vulnerability in Tp-Link Tapo and Tapo L530E Firmware

047910
CVSS 6.5 - MEDIUM
Attack vector
ADJACENT_NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
HIGH
Integrity impact
NONE
Availability impact
NONE
low complexity
tp-link

Summary

An issue in TPLink Smart Bulb Tapo series L530 before 1.2.4, L510E before 1.1.0, L630 before 1.0.4, P100 before 1.5.0, and Tapo Application 2.8.14 allows a remote attacker to obtain sensitive information via the TSKEP authentication function.

Vulnerable Configurations

Part Description Count
Application
Tp-Link
1
OS
Tp-Link
1
Hardware
Tp-Link
1