Filtered by vendor Tplink Subscriptions
Filtered by product Kasa Kp125m Subscriptions
Total 2 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2024-46549 1 Tplink 1 Kasa Kp125m 2024-10-04 7.6 High
An issue in the TP-Link MQTT Broker and API gateway of TP-Link Kasa KP125M v1.0.3 allows attackers to establish connections by impersonating devices owned by other users.
CVE-2024-46548 1 Tplink 2 Kasa Kp125m, Tapo P125m 2024-10-04 6.3 Medium
TP-Link Tapo P125M and Kasa KP125M v1.0.3 was discovered to improperly validate certificates, allowing attackers to eavesdrop on communications and access sensitive information via a man-in-the-middle attack.