CVE-2023-27126

low-risk
Published 2023-06-06

The AES Key-IV pair used by the TP-Link TAPO C200 camera V3 (EU) on firmware version 1.1.22 Build 220725 is reused across all cameras. An attacker with physical access to a camera is able to extract and decrypt sensitive data containing the Wifi password and the TP-LINK account credential of the victim.

Do I need to act?

-
0.05% chance of exploitation
EPSS score — low exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
4
CVSS 4.6/10 Medium
PHYSICAL / LOW complexity

Affected Products (1)

Tapo C200 Firmware

Affected Vendors

Tp-Link

References (6)

Product http://tapo.com
Product http://tp-link.com
Exploit https://www.claranet.fr/blog/dans-les-entrailles-dune-camera-connectee-tp-link-1...
Product http://tapo.com
Product http://tp-link.com
Exploit https://www.claranet.fr/blog/dans-les-entrailles-dune-camera-connectee-tp-link-1...
21
/ 100
low-risk
Severity 16/34 · Moderate
Exploitability 0/34 · Minimal
Exposure 5/34 · Minimal