Описание
By sending crafted files to the firmware update endpoint of Tapo C220 v1 and C520WS v2, the device terminates core system services before verifying authentication or firmware integrity. An unauthenticated attacker can trigger a persistent denial of service, requiring a manual reboot or application initiated restart to restore normal device operation.
EPSS
Процентиль: 16%
0.00053
Низкий
Дефекты
CWE-20
Связанные уязвимости
github
11 дней назад
By sending crafted files to the firmware update endpoint of Tapo C220 v1 and C520WS v2, the device terminates core system services before verifying authentication or firmware integrity. An unauthenticated attacker can trigger a persistent denial of service, requiring a manual reboot or application initiated restart to restore normal device operation.
EPSS
Процентиль: 16%
0.00053
Низкий
Дефекты
CWE-20