Lucene search

PRIOn knowledge basePRION:CVE-2023-38907

HistorySep 25, 2023 - 11:15 p.m.

Information disclosure

2023-09-2523:15:00

PRIOn knowledge base

www.prio-n.com

tplink smart bulb

tapo series

l530

v.1.0.0

tapo application

v.2.8.14

remote attacker

sensitive information

session key

information disclosure

7.3 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

52.2%

JSON

An issue in TPLink Smart bulb Tapo series L530 v.1.0.0 and Tapo Application v.2.8.14 allows a remote attacker to obtain sensitive information via session key in the message function.

CPENameOperatorVersion
tapoeq2.8.14
tapo_l530e_firmwareeq1.0.0

CPE	Name	Operator	Version
	tapo	eq	2.8.14
	tapo_l530e_firmware	eq	1.0.0

References

arxiv.org/abs/2308.09019

www.scitepress.org/Papers/2023/120929/120929.pdf

www.scitepress.org/PublicationsDetail.aspx?ID=X/auBv7JrSo=&t=1