Filtered by vendor Tplink Subscriptions
Total 4 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2023-43138 2 Tp-link, Tplink 3 Tl-er5120g, Tl-er5120g Firmware, Tl-er5120g 2024-11-21 8.8 High
TPLINK TL-ER5120G 4.0 2.0.0 Build 210817 Rel.80868n has a command injection vulnerability, when an attacker adds NAPT rules after authentication, and the rule name has an injection point.
CVE-2023-43137 2 Tp-link, Tplink 3 Tl-er5120g, Tl-er5120g Firmware, Tl-er5120g 2024-11-21 8.8 High
TPLINK TL-ER5120G 4.0 2.0.0 Build 210817 Rel.80868n has a command injection vulnerability, when an attacker adds ACL rules after authentication, and the rule name parameter has injection points.
CVE-2024-46549 1 Tplink 1 Kasa Kp125m 2024-10-04 7.6 High
An issue in the TP-Link MQTT Broker and API gateway of TP-Link Kasa KP125M v1.0.3 allows attackers to establish connections by impersonating devices owned by other users.
CVE-2024-46548 1 Tplink 2 Kasa Kp125m, Tapo P125m 2024-10-04 6.3 Medium
TP-Link Tapo P125M and Kasa KP125M v1.0.3 was discovered to improperly validate certificates, allowing attackers to eavesdrop on communications and access sensitive information via a man-in-the-middle attack.