CNNVD-202602-806 Information
CNNVD ID
CNNVD-202602-806
Related CVE
- CNNVD Published: 2026-02-05
Description (Chinese)
TP-LINK Tapo等都是中国普联(TP-LINK)公司的产品。TP-LINK Tapo是一系列安全 WiFi 摄像头。TP-Link Tapo H100等都是中国普联(TP-Link)公司的产品。TP-Link Tapo H100是一个智能物联网网关。TP-Link Tapo P100是一个智能物联网网关。 TP-Link Tapo H100 v1版本和Tapo P100 v1版本存在安全漏洞,该漏洞源于证书验证不当,可能导致同网段路径上的攻击者拦截和修改加密的设备-云通信,从而破坏通信的机密性和完整性。
Description (English)
TP-LINK Tapo and others are the products of the PURK company. TP-LINK Tapo is a series of secure WiFi cameras. TP-Link Tapo H100, etc., are the products of TP-Link. TP-Link Tapo H100 is a smart Internet gateway. TP-Link Tapo P100 is a smart Internet gateway. TP-Link Tapo H100 v1 and Tapo P100 v1 have a security loophole, which stems from the improper certification of certificates, which may lead to the interception and modification of encrypted equipment-unicable communications by the assailants on the same section path, thereby undermining the confidentiality and integrity of communications.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
普联
Published
2026-02-05
Last Modified
2026-02-24
References
https://www.tp-link.com/en/support/download/tapo-h100/ https://www.tp-link.com/en/support/download/tapo-p100/ https://www.tp-link.com/us/support/download/tapo-h100/ https://www.tp-link.com/us/support/download/tapo-p100/ https://www.tp-link.com/us/support/faq/4949/