Vulnerabilities > TP Link

DATE CVE VULNERABILITY TITLE RISK
2024-12-08 CVE-2024-12344 Out-of-bounds Write vulnerability in Tp-Link Vn020 F3V Firmware 6.2.1021
A vulnerability, which was classified as critical, was found in TP-Link VN020 F3v(T) TT_V6.2.1021.
network
low complexity
tp-link CWE-787
critical
9.8
2024-12-08 CVE-2024-12343 Classic Buffer Overflow vulnerability in Tp-Link Vn020 F3V Firmware 6.2.1021
A vulnerability classified as critical has been found in TP-Link VN020 F3v(T) TT_V6.2.1021.
low complexity
tp-link CWE-120
8.8
2024-11-15 CVE-2024-11237 Out-of-bounds Write vulnerability in Tp-Link Vn020-F3V(T) Firmware Ttv6.2.1021
A vulnerability, which was classified as critical, has been found in TP-Link VN020 F3v(T) TT_V6.2.1021.
network
low complexity
tp-link CWE-787
critical
9.8
2024-11-04 CVE-2024-10523 Cleartext Storage of Sensitive Information vulnerability in Tp-Link Tapo H100 Firmware
This vulnerability exists in TP-Link IoT Smart Hub due to storage of Wi-Fi credentials in plain text within the device firmware.
low complexity
tp-link CWE-312
4.6
2024-11-01 CVE-2024-22733 NULL Pointer Dereference vulnerability in Tp-Link Mr200 Firmware 210201
TP Link MR200 V4 Firmware version 210201 was discovered to contain a null-pointer-dereference in the web administration panel on /cgi/login via the sign, Action or LoginStatus query parameters which could lead to a denial of service by a local or remote unauthenticated attacker.
network
low complexity
tp-link CWE-476
7.5
2024-03-06 CVE-2023-43318 Unspecified vulnerability in Tp-Link Tl-Sg2210P Firmware 5.0
TP-Link JetStream Smart Switch TL-SG2210P 5.0 Build 20211201 allows attackers to escalate privileges via modification of the 'tid' and 'usrlvl' values in GET requests.
network
low complexity
tp-link
8.8
2024-01-17 CVE-2023-49515 Unspecified vulnerability in Tp-Link Tapo C200 Firmware and Tapo Tc70 Firmware
Insecure Permissiosn vulnerability in TP Link TC70 and C200 WIFI Camera v.3 firmware v.1.3.4 and fixed in v.1.3.11 allows a physically proximate attacker to obtain sensitive information via a connection to the UART pin components.
low complexity
tp-link
4.6
2024-01-11 CVE-2024-21773 OS Command Injection vulnerability in Tp-Link products
Multiple TP-LINK products allow a network-adjacent unauthenticated attacker with access to the product from the LAN port or Wi-Fi to execute arbitrary OS commands on the product that has pre-specified target devices and blocked URLs in parental control settings.
low complexity
tp-link CWE-78
8.8
2024-01-11 CVE-2024-21821 OS Command Injection vulnerability in Tp-Link products
Multiple TP-LINK products allow a network-adjacent authenticated attacker with access to the product from the LAN port or Wi-Fi to execute arbitrary OS commands.
low complexity
tp-link CWE-78
8.0
2024-01-11 CVE-2024-21833 OS Command Injection vulnerability in Tp-Link products
Multiple TP-LINK products allow a network-adjacent unauthenticated attacker with access to the product to execute arbitrary OS commands.
low complexity
tp-link CWE-78
8.8