An issue in TPLink Smart Bulb Tapo series L530 before 1.2.4, L510E before 1.1.0, L630 before 1.0.4, P100 before 1.5.0, and Tapo Application 2.8.14 allows a remote attacker to obtain sensitive information via the IV component in the AES128-CBC function.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Tapo | Tp-link | 2.8.14 (including) | 2.8.14 (including) |
Tapo_l530e_firmware | Tp-link | 1.0.0 (including) | 1.0.0 (including) |