CNNVD-202601-4886 Information

CNNVD ID

CNNVD-202601-4886

Related CVE

CVE-2026-1457

• CNNVD Published: 2026-01-29

Description (Chinese)

TP-Link VIGI C385是中国普联（TP-Link）公司的一个监控摄影机。 TP-Link VIGI C385 V1版本存在安全漏洞，该漏洞源于Web API存在缓冲区处理缺陷且缺少输入清理，可能导致内存损坏和远程代码执行。

Description (English)

TP-Link VIGI C385 is a surveillance camera of the PUTC (TP-Link). The TP-Link VIGI C385 V1 version has a security loophole, which stems from the fact that Web API has a buffer zone disposal defect and lacks input clearance, which may lead to memory damage and remote code execution.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

普联

Published

2026-01-29

Last Modified

2026-02-24

References

https://www.tp-link.com/en/support/download/vigi-c385/v1/#Firmware https://www.tp-link.com/kr/support/download/vigi-c385/v1/#Firmware https://www.tp-link.com/us/support/faq/4931/