tp-link

535 tracked vulnerabilities.

CVE-2026-9105 MEDIUM
Authenticated Stack-Based Buffer Overflow in TP-Link TL-WR841N Web Interface
Jun 29, 2026
CVSS 6.5
EPSS 0.01
CVE-2026-12760 MEDIUM
Denial-of-Service Vulnerability via Malformed IPv4 Fragmentation Handling in TP-Link Tapo C200
Jun 24, 2026
CVSS 6.5
EPSS 0.00
CVE-2026-11410 HIGH
OS Command Injection in BigPond Cable (BPA) Configuration in TP-Link TL-WR940N
Jun 17, 2026
CVSS 7.2
EPSS 0.03
CVE-2026-11409 HIGH
OS Command Injection in IPv6 PPPoE Configuration in TP-Link TL-WR940N
Jun 17, 2026
CVSS 7.2
EPSS 0.03
CVE-2026-6250 HIGH
Authenticated Format String Injection on TP-Link Tapo C110
Jun 11, 2026
CVSS 8.1
EPSS 0.00
CVE-2026-8714 MEDIUM
Denial-of-Service Vulnerability in RTSP Input Handling on TP-Link's Tapo C520WS
Jun 05, 2026
CVSS 6.5
EPSS 0.00
CVE-2026-1871 MEDIUM
Authenticated Stack-based Buffer Overflow in RTSP Authentication of Tapo C200
Jun 02, 2026
CVSS 6.5
EPSS 0.00
CVE-2026-34127 MEDIUM
Stored Cross-Site Scripting (XSS) via Configuration File Import on TP-Link's TL-SG108PE
May 29, 2026
CVSS 4.8
EPSS 0.00
CVE-2026-34126 HIGH
Bluetooth Communication Uses Unencrypted Transmission During Initial Setup on TP-Link's Tapo L535E, P300 and D100C
May 28, 2026
CVSS 7.5
EPSS 0.00
CVE-2026-8697 HIGH
Improper Authentication Rate Limiting on TP-Link's Archer C64
May 28, 2026
CVSS 8.8
EPSS 0.01
CVE-2026-5509 HIGH
Arbitrary Command Injection via Browser Developer Console in TP-Link Archer BE450 and BE7200
May 27, 2026
CVSS 7.2
EPSS 0.02
CVE-2026-3294 HIGH
Authentication Logic Vulnerability on Multiple TP-Link Range Extenders
May 22, 2026
CVSS 8.8
EPSS 0.00
CVE-2026-5511 LOW
Information Disclosure via Diagnostic Interface Due to Improper Input Validation on TP-Link's Archer AX72
May 19, 2026
CVSS 2.7
EPSS 0.00
CVE-2026-5039 HIGH
Predictable Default Cryptographic Key Used for DES Encryption in TP-Link TL-WL841N
Apr 23, 2026
CVSS 8.8
EPSS 0.00
CVE-2026-5363 HIGH
Use of weak cryptographic key in TP-Link Archer C7
Apr 16, 2026
CVSS 8.8
EPSS 0.00
CVE-2026-30818 HIGH
OS Command Injection Vulnerability in dnsmasq Module in TP-Link AX53
Apr 08, 2026
CVSS 8.0
EPSS 0.01
CVE-2026-30817 MEDIUM
Arbitrary File Reading Vulnerability in dnsmasq Module in TP-Link AX53
Apr 08, 2026
CVSS 5.7
EPSS 0.00
CVE-2026-30816 MEDIUM
Arbitrary File Reading Vulnerability in OpenVPN Module in TP-Link AX53
Apr 08, 2026
CVSS 5.7
EPSS 0.00
CVE-2026-30815 HIGH
OS Command Injection Vulnerability in OpenVPN Module in TP-Link AX53
Apr 08, 2026
CVSS 8.0
EPSS 0.01
CVE-2026-30814 HIGH
Buffer Overflow Vulnerability in TP-Link AX53
Apr 08, 2026
CVSS 8.0
EPSS 0.00
CVE-2026-34124 MEDIUM
Denial of Service via Path Expansion Overflow in HTTP Service in TP-Link Tapo C520WS
Apr 02, 2026
CVSS 6.5
EPSS 0.00
CVE-2026-34122 MEDIUM
Stack-based Buffer Overflow Leading to Denial of Service in TP-Link Tapo C520WS
Apr 02, 2026
CVSS 6.5
EPSS 0.00
CVE-2026-34121 HIGH
Authentication Bypass in DS Configuration Service via HTTP Request Parsing Differential of TP-Link Tapo C520WS
Apr 02, 2026
CVSS 8.8
EPSS 0.00
CVE-2026-34120 MEDIUM
Heap-based Buffer Overflow Vulnerability Leading to Denial-of-Service in TP-Link Tapo C520WS
Apr 02, 2026
CVSS 6.5
EPSS 0.00
CVE-2026-34119 MEDIUM
Heap-based Buffer Overflow Vulnerability Leading to Denial-of-Service in TP-Link Tapo C520WS
Apr 02, 2026
CVSS 6.5
EPSS 0.00