CNNVD-202601-4491 Information
CNNVD ID
CNNVD-202601-4491
Related CVE
- CNNVD Published: 2026-01-27
Description (Chinese)
TP-Link Tapo C220和TP-Link Tapo C520WS都是中国普联(TP-Link)公司的一个WiFi摄像头。 TP-Link Tapo C220 v1版本和P-Link Tapo C520WS v2版本存在安全漏洞,该漏洞源于HTTP服务未安全处理包含过大Content-Length标头的POST请求,可能导致拒绝服务。
Description (English)
TP-Link Tapo C220 and TP-Link Tapo C520WS are all WiFi cameras of the Plutonium of China (TP-Link). TP-Link Tapo C220 v1 and P-Link Tapo C520WS v2 have a security loophole, which stems from the fact that the HTTP service did not securely process POST requests containing too large a Content-Length sign, which could lead to the denial of services.
Hazard Level
Medium
Vulnerability Type
其他
Affected Vendor
普联
Published
2026-01-27
Last Modified
2026-02-24
References
https://www.tp-link.com/en/support/download/tapo-c220/v1/ https://www.tp-link.com/en/support/download/tapo-c520ws/v2/ https://www.tp-link.com/us/support/download/tapo-c520ws/v2/ https://www.tp-link.com/us/support/download/tapo-c220/v1.60/ https://www.tp-link.com/us/support/faq/4923/ https://access.redhat.com/security/cve/cve-2026-0918
Patch
https://www.tp-link.com/us/support/faq/4923/
Share on: