CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2026-34122

A stack-based buffer overflow vulnerability was identified in TP-Link Tapo C520WS v2.6 within a configuration handling component due to insufficient input validation. An attacker can exploit this vulnerability by supplying an excessively long value for a vulnerable configuration parameter, resulting in a stack overflow. Successful exploitation results in Denial-of-Service (DoS) condition, leading to a service crash or device reboot, impacting availability.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 4.5%

CVSS Severity

CVSS v3 Score 6.5

References

https://www.tp-link.com/en/support/download/tapo-c520ws/#Firmware-Release-Notes
https://www.tp-link.com/us/support/download/tapo-c520ws/#Firmware-Release-Notes
https://www.tp-link.com/us/support/faq/5047/

Products affected by CVE-2026-34122

Tp-Link » Tapo C520ws » Version: 2.6

cpe:2.3:h:tp-link:tapo_c520ws:2.6
Tp-Link » Tapo C520ws Firmware » Version: Any

cpe:2.3:o:tp-link:tapo_c520ws_firmware:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2026-34122

Products

Pricing

Contact Us