CVE-2023-27126

The AES Key-IV pair used by the TP-Link TAPO C200 camera V3 (EU) on firmware version 1.1.22 Build 220725 is reused across all cameras. An attacker with physical access to a camera is able to extract and decrypt sensitive data containing the Wifi password and the TP-LINK account credential of the victim.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
4.6 MEDIUM
PHYSICAL
LOW
NONE
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
mitreCNA
---
---
CVEADP
---
---
CISA-ADPADP
4.6 MEDIUM
PHYSICAL
LOW
NONE
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 13%
VendorProductVersion
tp-linktapo_c200_firmware
1.2.2:build_220725
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://tapo.com
http://tp-link.com
https://www.claranet.fr/blog/dans-les-entrailles-dune-camera-connectee-tp-link-14
http://tapo.com
http://tp-link.com
https://www.claranet.fr/blog/dans-les-entrailles-dune-camera-connectee-tp-link-14