GHSA-78fp-rfh4-99fhHighCVSS 6.5
A denial-of-service vulnerability exists in the RTSP server component of TP-Link Tapo C520WS v2...
🔗 CVE IDs covered (1)
📋 Description
A denial-of-service vulnerability exists in the RTSP server component of TP-Link Tapo C520WS v2 due to improper handling of syntactically invalid input. Crafted inputs can trigger a processing error, causing the RTSP service to enter non-responsive state.
Successful exploitation may cause the RTSP in a denial-of-service condition.
🔗 References (5)
- https://nvd.nist.gov/vuln/detail/CVE-2026-8714
- https://www.tp-link.com/en/support/download/tapo-c520ws/v2/#Firmware-Release-Notes
- https://www.tp-link.com/us/support/download/tapo-c520ws/v2/#Firmware-Release-Notes
- https://www.tp-link.com/us/support/faq/5118
- https://github.com/advisories/GHSA-78fp-rfh4-99fh