Skip to main content

Tapo H100 Firmware

2 CVEs product

Monthly

CVE-2025-15557 HIGH This Week

An Improper Certificate Validation vulnerability in TP-Link Tapo H100 v1 and Tapo P100 v1 allows an on-path attacker on the same network segment to intercept and modify encrypted device-cloud communications. [CVSS 8.8 HIGH]

TP-Link Tapo P100 Firmware Tapo H100 Firmware
NVD
CVSS 3.1
8.8
EPSS
0.0%
CVE-2024-10523 MEDIUM This Month

This vulnerability exists in TP-Link IoT Smart Hub due to storage of Wi-Fi credentials in plain text within the device firmware. Rated medium severity (CVSS 4.4), this vulnerability is no authentication required. No vendor patch available.

TP-Link Information Disclosure Tapo H100 Firmware
NVD
CVSS 4.0
4.4
EPSS
0.1%
EPSS 0% CVSS 8.8
HIGH This Week

An Improper Certificate Validation vulnerability in TP-Link Tapo H100 v1 and Tapo P100 v1 allows an on-path attacker on the same network segment to intercept and modify encrypted device-cloud communications. [CVSS 8.8 HIGH]

TP-Link Tapo P100 Firmware Tapo H100 Firmware
NVD
EPSS 0% CVSS 4.4
MEDIUM This Month

This vulnerability exists in TP-Link IoT Smart Hub due to storage of Wi-Fi credentials in plain text within the device firmware. Rated medium severity (CVSS 4.4), this vulnerability is no authentication required. No vendor patch available.

TP-Link Information Disclosure Tapo H100 Firmware
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy