First published: Mon Nov 04 2024(Updated: )
This vulnerability exists in TP-Link IoT Smart Hub due to storage of Wi-Fi credentials in plain text within the device firmware. An attacker with physical access could exploit this by extracting the firmware and analyzing the binary data to obtain the Wi-Fi credentials stored on the vulnerable device.
Credit: vdisclose@cert-in.org.in
Affected Software | Affected Version | How to fix |
---|---|---|
All of | ||
Tp-link Tapo H100 Firmware | <1.5.22 | |
Tp-link Tapo H100 | =1.0 |
Upgrade TP-Link Tapo H100 IoT Smart Hub to firmware version 1.5.22
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.