cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2023-49515,https://securityvulnerability.io/vulnerability/CVE-2023-49515,Insecure Permissions Vulnerability in TP Link TC70 and C200 WiFi Camera,An insecure permissions vulnerability in TP Link's TC70 and C200 WiFi Cameras allows a physically proximate attacker to access sensitive information by exploiting the UART pin components. The issue is present in firmware version 1.3.4 and has been addressed in version 1.3.11. Users are encouraged to update to the latest firmware to mitigate potential security risks.,Tp-link,Tapo C200 Firmware,4.6,MEDIUM,0.000750000006519258,false,,false,false,false,,,false,false,,2024-01-17T00:00:00.000Z,0
CVE-2023-27126,https://securityvulnerability.io/vulnerability/CVE-2023-27126,Reused AES Key-IV Pair in TP-Link TAPO C200 Camera Firmware,"The TP-Link TAPO C200 camera has a security flaw where the AES Key-IV pair is reused across all devices running the affected firmware version. This weakness means that if an attacker gains physical access to a camera, they can extract encrypted sensitive data, including the victim's Wi-Fi password and TP-Link account credentials. This presents a significant risk, especially in environments where cameras are easily accessible. Users of this camera model are urged to secure their devices and monitor for any unauthorized access.",Tp-link,Tapo C200 Firmware,4.6,MEDIUM,0.0008999999845400453,false,,false,false,false,,,false,false,,2023-06-06T00:00:00.000Z,0
CVE-2022-41505,https://securityvulnerability.io/vulnerability/CVE-2022-41505,Access Control Flaw in TP-Link Tapo C200 V1 Devices,"An identified access control issue in TP-Link Tapo C200 V1 devices allows unauthorized individuals in close proximity to take advantage of a weakness in the system. By connecting to the UART pins and interrupting the boot process, attackers can achieve root access by executing commands with init=/bin/sh. This flaw underscores the importance of physical security measures and highlights potential risks associated with unprotected hardware interfaces.",Tp-link,Tapo C200 V1 Firmware,6.4,MEDIUM,0.001180000021122396,false,,false,false,false,,,false,false,,2023-01-23T00:00:00.000Z,0