PT-2023-25016 · Tp Link · Tp-Link Tapo

Sara Lazzaro

+1

·

Published

2023-12-27

·

Updated

2024-01-05

·

CVE-2023-34829

CVSS v3.1

6.5

Medium

VectorAV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Name of the Vulnerable Software and Affected Versions TP-Link Tapo versions prior to 3.1.315
Description The issue is related to incorrect access control, allowing attackers to access user credentials in plaintext.
Recommendations For versions prior to 3.1.315, update to version 3.1.315 or later to resolve the issue.

Exploit

Fix

Cleartext Transmission of Sensitive Information

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-319

Related Identifiers

CVE-2023-34829

Affected Products

Tp-Link Tapo