Davide Bonaventura

**Name of the Vulnerable Software and Affected Versions** TPLink Smart Bulb Tapo series L530 versions 1.0.0 through 1.2.3 TPLink Smart Bulb Tapo series L510E versions 1.0.0 through 1.0.9 TPLink Smart Bulb Tapo series L630 versions 1.0.0 through 1.0.3 TPLink Smart Bulb Tapo series P100 versions 1.0.0 through 1.4.9 Tapo Application versions 2.8.14 and earlier **Description** An issue in TPLink Smart Bulb Tapo series allows a remote attacker to replay old messages encrypted with a still valid session key, potentially obtaining sensitive information via the session key in the message function. **Recommendations** For TPLink Smart Bulb Tapo series L530 versions 1.0.0 through 1.2.3, update to version 1.2.4 or later. For TPLink Smart Bulb Tapo series L510E versions 1.0.0 through 1.0.9, update to version 1.1.0 or later. For TPLink Smart Bulb Tapo series L630 versions 1.0.0 through 1.0.3, update to version 1.0.4 or later. For TPLink Smart Bulb Tapo series P100 versions 1.0.0 through 1.4.9, update to version 1.5.0 or later. For Tapo Application versions 2.8.14 and earlier, update to a version later than 2.8.14.

**Name of the Vulnerable Software and Affected Versions** TP-Link Tapo L530 versions prior to 1.2.4 TP-Link Tapo L510E versions prior to 1.1.0 TP-Link Tapo L630 versions prior to 1.0.4 TP-Link Tapo P100 versions prior to 1.5.0 Tapo Application versions prior to 2.8.14 **Description** The issue is related to the lack of use of a random initialization vector with the cipher block chaining mode, allowing a remote attacker to obtain sensitive information via the IV component in the AES128-CBC function. This can enable a brute force attack. **Recommendations** For TP-Link Tapo L530 versions prior to 1.2.4, update to version 1.2.4 or later. For TP-Link Tapo L510E versions prior to 1.1.0, update to version 1.1.0 or later. For TP-Link Tapo L630 versions prior to 1.0.4, update to version 1.0.4 or later. For TP-Link Tapo P100 versions prior to 1.5.0, update to version 1.5.0 or later. For Tapo Application versions prior to 2.8.14, update to version 2.8.14 or later. As a temporary workaround, consider restricting access to the AES128-CBC function until a patch is available.

**Name of the Vulnerable Software and Affected Versions** TPLink Smart Bulb Tapo series L530 versions 1.0.0 through 1.1.9 TPLink Smart Bulb Tapo series L510E version 1.0.8 TPLink Smart Bulb Tapo series L630 version 1.0.3 TPLink Smart Bulb Tapo series P100 version 1.4.9 TPLink Smart Camera Tapo series C200 version 1.1.18 Tapo Application version 2.8.14 **Description** The issue is related to the lack of protection for service data in the Wi-Fi lamp TP-Link Tapo L530. A remote attacker can exploit this to obtain sensitive information via the authentication code for the UDP message. **Recommendations** For TPLink Smart Bulb Tapo series L530 versions 1.0.0 through 1.1.9, update to a version that contains a fix for this issue. For TPLink Smart Bulb Tapo series L510E version 1.0.8, update to a version that contains a fix for this issue. For TPLink Smart Bulb Tapo series L630 version 1.0.3, update to a version that contains a fix for this issue. For TPLink Smart Bulb Tapo series P100 version 1.4.9, update to a version that contains a fix for this issue. For TPLink Smart Camera Tapo series C200 version 1.1.18, update to a version that contains a fix for this issue. For Tapo Application version 2.8.14, update to a version that contains a fix for this issue. As a temporary workaround, consider restricting access to the authentication code for the UDP message until a patch is available.

**Name of the Vulnerable Software and Affected Versions** TP-Link Smart Bulb Tapo series L530 versions prior to 1.2.4 TP-Link Smart Bulb Tapo series L510E versions prior to 1.1.0 TP-Link Smart Bulb Tapo series L630 versions prior to 1.0.4 TP-Link Smart Bulb Tapo series P100 versions prior to 1.5.0 Tapo Application versions prior to 2.8.14 **Description** The issue allows a remote attacker to obtain sensitive information via the `TSKEP` authentication function. This is related to a lack of protection for service data in the TP-Link Tapo L530 Wi-Fi bulb's firmware. **Recommendations** For TP-Link Smart Bulb Tapo series L530 versions prior to 1.2.4, update to version 1.2.4 or later. For TP-Link Smart Bulb Tapo series L510E versions prior to 1.1.0, update to version 1.1.0 or later. For TP-Link Smart Bulb Tapo series L630 versions prior to 1.0.4, update to version 1.0.4 or later. For TP-Link Smart Bulb Tapo series P100 versions prior to 1.5.0, update to version 1.5.0 or later. For Tapo Application versions prior to 2.8.14, update to version 2.8.14 or later.