An issue in TPLink Smart Bulb Tapo series L530 1.1.9, L510E 1.0.8, L630 1.0.3, P100 1.4.9, Smart Camera Tapo series C200 1.1.18, and Tapo Application 2.8.14 allows a remote attacker to obtain sensitive information via the authentication code for the UDP message.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Tapo | Tp-link | 2.8.14 (including) | 2.8.14 (including) |
| Tapo_l530e_firmware | Tp-link | 1.0.0 (including) | 1.0.0 (including) |
References
- https://arxiv.org/abs/2308.09019
- https://www.dmi.unict.it/giamp/smartbulbscanbehackedtohackintoyourhousehold/
- https://www.scitepress.org/Papers/2023/120929/120929.pdf
- https://www.scitepress.org/PublicationsDetail.aspx?ID=X/auBv7JrSo=\u0026t=1
- https://arxiv.org/abs/2308.09019
- https://www.dmi.unict.it/giamp/smartbulbscanbehackedtohackintoyourhousehold/
- https://www.scitepress.org/Papers/2023/120929/120929.pdf
- https://www.scitepress.org/PublicationsDetail.aspx?ID=X/auBv7JrSo=\u0026t=1