CVE-2024-31340
May 22, 2024, 12:46 p.m.
Tags
Product(s) Impacted
TP-Link Tether
- before 4.5.13
TP-Link Tapo
- before 3.3.6
Description
TP-Link Tether versions prior to 4.5.13 and TP-Link Tapo versions prior to 3.3.6 do not properly validate certificates, which may allow a remote unauthenticated attacker to eavesdrop on an encrypted communication via a man-in-the-middle attack.
Weaknesses
Date
Published: May 22, 2024, 6:15 a.m.
Last Modified: May 22, 2024, 12:46 p.m.
Status : Awaiting Analysis
CVE has been recently published to the CVE List and has been received by the NVD.
More infoSource
vultures@jpcert.or.jp
References
vultures@jpcert.or.jp
vultures@jpcert.or.jp
vultures@jpcert.or.jp