Authentication Code Exposure in TPLink Smart Bulb Tapo Series L530 v.1.0.0 and Tapo Application v.2.8.14

Authentication Code Exposure in TPLink Smart Bulb Tapo Series L530 v.1.0.0 and Tapo Application v.2.8.14

CVE-2023-38906 · MEDIUM Severity

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

An issue in TPLink Smart Bulb Tapo series L530 1.1.9, L510E 1.0.8, L630 1.0.3, P100 1.4.9, Smart Camera Tapo series C200 1.1.18, and Tapo Application 2.8.14 allows a remote attacker to obtain sensitive information via the authentication code for the UDP message.

Learn more about our Web Application Penetration Testing UK.