Known Vulnerabilities for Tapo C200 by Tp-link
Listed below are 7 of the newest known vulnerabilities associated with "Tapo C200" by "Tp-link".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2025-14300 | The HTTPS service on Tapo C200 V3 exposes a connectAP interface without proper authentication. An unauthenticated attacker on... | Not Provided | 2025-12-20 | 2026-04-03 |
| CVE-2025-8065 | A stack-based buffer overflow vulnerability was identified in the ONVIF SOAP XML Parser in Tapo C200 v3 and C520WS v2.6. When... | Not Provided | 2025-12-20 | 2026-04-03 |
| CVE-2023-49515 | 4.6 - MEDIUM | 2024-01-17 | 2024-01-24 | |
| CVE-2023-27126 | The AES Key-IV pair used by the TP-Link TAPO C200 camera V3 (EU) on firmware version 1.1.22 Build 220725 is reused across all... | 4.6 - MEDIUM | 2023-06-06 | 2023-06-12 |
| CVE-2023-27098 | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 7.5 - HIGH | 2024-01-09 | 2024-01-12 |
| CVE-2021-4045 | TP-Link Tapo C200 IP camera, on its 1.1.15 firmware version and below, is affected by an unauthenticated RCE vulnerability, p... | 9.8 - CRITICAL | 2022-03-10 | 2022-09-30 |
| CVE-2020-11445 | TP-Link cloud cameras through 2020-02-09 allow remote attackers to bypass authentication and obtain sensitive information via... | 5.3 - MEDIUM | 2020-04-01 | 2021-07-21 |