What is GHSA-qv33-m6vq-mqmr?

GHSA-qv33-m6vq-mqmr is a security advisory published by GitHub Security Advisories with Medium severity. A stack-based buffer overflow vulnerability exists in Tapo C520WS v2 in the ONVIF DeleteUsers...

Which CVE IDs does GHSA-qv33-m6vq-mqmr cover?

GHSA-qv33-m6vq-mqmr covers the following CVE IDs: CVE-2026-6240. Each CVE has its own detail page on EchelonGraph Pulse with the synthesized EG score.

GHSA-qv33-m6vq-mqmrMedium

A stack-based buffer overflow vulnerability exists in Tapo C520WS v2 in the ONVIF DeleteUsers...

Vendor

GitHub Security Advisories

Published

June 6, 2026

Last Modified

June 6, 2026

🔗 CVE IDs covered (1)

CVE-2026-6240 →

📋 Description

A stack-based buffer overflow vulnerability exists in Tapo C520WS v2 in the ONVIF DeleteUsers service, due to insufficient boundary checks when handling multiple user deletion parameters. An authenticated attacker can send a crafted malicious request containing an excessive number of identifiers to overflow stack memory.

Successful exploitation may result in a service crash or deadlock, leading to DoS affecting device management and monitoring functionality.

🔗 References (5)

https://nvd.nist.gov/vuln/detail/CVE-2026-6240
https://www.tp-link.com/en/support/download/tapo-c520ws/#Firmware-Release-Notes
https://www.tp-link.com/us/support/download/tapo-c520ws/#Firmware-Release-Notes
https://www.tp-link.com/us/support/faq/5120
https://github.com/advisories/GHSA-qv33-m6vq-mqmr