Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Improper Content-Length Validation in HTTPS Requests on Tapo C200
Vulnerability Description
The HTTPS server on Tapo C200 V3 does not properly validate the Content-Length header, which can lead to an integer overflow. An unauthenticated attacker on the same local network segment can send crafted HTTPS requests to trigger excessive memory allocation, causing the device to crash and resulting in denial-of-service (DoS).
CVSS Information
N/A
Vulnerability Type
不加限制或调节的资源分配
Vulnerability Title
TP-LINK Tapo C200 安全漏洞
Vulnerability Description
TP-LINK Tapo C200是中国普联(TP-LINK)公司的一款网络摄像头设备。 TP-LINK Tapo C200 V3存在安全漏洞,该漏洞源于未正确验证Content-Length标头,可能导致整数溢出和拒绝服务攻击。
CVSS Information
N/A
Vulnerability Type
N/A