CVE-2026-34121

Name of the Vulnerable Software and Affected Versions TP-Link Tapo C520WS version 2.6

Description An authentication bypass exists in the HTTP handling of the DS configuration service. The issue stems from inconsistent parsing and authorization logic in JSON requests during authentication checks. An unauthenticated attacker can bypass authorization by appending an authentication-exempt action to a request that contains privileged DS do actions. This allows the unauthorized execution of restricted configuration actions, which may lead to the unauthorized modification of the device state.

Recommendations Update TP-Link Tapo C520WS version 2.6 to the latest firmware version provided by the manufacturer. Isolate management interfaces from untrusted networks.