PT-2026-58867 · Tp Link · Kasa Ec70 V4+1

·

CVE-2026-9770

·

Published

2026-07-15

·

Updated

2026-07-17

CVSS v4.0

8.6

High

VectorAV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Name of the Vulnerable Software and Affected Versions Kasa EC71 v4 (affected versions not specified) Kasa EC70 v4 (affected versions not specified)
Description The firmware contains a static cryptographic private key stored in a read-only filesystem that is shared across all devices. An attacker with access to the firmware image can extract this embedded key. This allows an unauthenticated attacker on the same network to use the key within the web management service, compromising the confidentiality of encrypted communications. This can lead to passive decryption of traffic or active man-in-the-middle (MITM) attacks, where an attacker intercepts and potentially alters communication between two parties.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Found an issue in the description? Have something to add? Feel free to write us 👾

Weakness Enumeration

Related Identifiers

CVE-2026-9770

Affected Products

Kasa Ec70 V4
Kasa Ec71 V4