CVE-2025-1099 in Tapo C500 V1 Wi-Fi Camerainfo

Zusammenfassung

von MITRE • 10.02.2025

The TP-Link Tapo C500 V1 and V2 are a pan-and-tilt outdoor Wi-Fi security cameras designed for comprehensive surveillance.

This vulnerability exists in Tapo C500 Wi-Fi camera due to hard-coded RSA private key embedded within the device firmware. An attacker with physical access could exploit this vulnerability to obtain cryptographic private keys which can then be used to perform impersonation, data decryption and man in the middle attacks on the targeted device.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

Zuständig

CERT-In

Reservieren

07.02.2025

Veröffentlichung

10.02.2025

Moderieren

akzeptiert

Eintrag

VDB-295092

CPE

bereit

EPSS

0.00247

KEV

nein

Aktivitäten

very low

Quellen

Do you want to use VulDB in your project?

Use the official API to access entries easily!