Описание
An access control issue on TP-LInk Tapo C200 V1 devices allows physically proximate attackers to obtain root access by connecting to the UART pins, interrupting the boot process, and setting an init=/bin/sh value.
Ссылки
- ExploitThird Party Advisory
- ExploitThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
Одновременно
cpe:2.3:o:tp-link:tapo_c200_v1_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:tp-link:tapo_c200_v1:-:*:*:*:*:*:*:*
EPSS
Процентиль: 28%
0.00103
Низкий
6.4 Medium
CVSS3
Дефекты
NVD-CWE-Other
CWE-306
Связанные уязвимости
CVSS3: 6.4
github
около 3 лет назад
An access control issue on TP-LInk Tapo C200 V1 devices allows physically proximate attackers to obtain root access by connecting to the UART pins, interrupting the boot process, and setting an init=/bin/sh value.
EPSS
Процентиль: 28%
0.00103
Низкий
6.4 Medium
CVSS3
Дефекты
NVD-CWE-Other
CWE-306