CVE-2020-11445

Published: Apr 1, 2020Modified: Nov 21, 2024

5.3

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Exploitability: 3.9 / Impact: 1.4

Source: NVD

Description

TP-Link cloud cameras through 2020-02-09 allow remote attackers to bypass authentication and obtain sensitive information via vectors involving a Wi-Fi session with GPS enabled, aka CNVD-2020-04855.

Affected (15)

Products: Tp Link: Nc450 Firmware, Nc260 Firmware, Nc250 Firmware, Nc230 Firmware, Nc220 Firmware, Nc210 Firmware, Nc200 Firmware, Kc300s2 Firmware, Kc310s2 Firmware, Kc200 Firmware, Tapo C200 Firmware, Tapo C100 Firmware, Tl Sc3430 Firmware, Tl Sc3430n Firmware, Tl Sc4171g Firmware

15 products

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Tp Link Nc450 Firmware	Up to 2020-02-09

Running on/with	Platform Versions
Tp Link Nc450	All versions

Configuration B

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Tp Link Nc260 Firmware	Up to 2020-02-09

Running on/with	Platform Versions
Tp Link Nc260	All versions

Configuration C

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Tp Link Nc250 Firmware	Up to 2020-02-09

Running on/with	Platform Versions
Tp Link Nc250	All versions

Configuration D

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Tp Link Nc230 Firmware	Up to 2020-02-09

Running on/with	Platform Versions
Tp Link Nc230	All versions

Configuration E

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Tp Link Nc220 Firmware	Up to 2020-02-09

Running on/with	Platform Versions
Tp Link Nc220	All versions

Configuration F

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Tp Link Nc210 Firmware	Up to 2020-02-09

Running on/with	Platform Versions
Tp Link Nc210	All versions

Configuration G

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Tp Link Nc200 Firmware	Up to 2020-02-09

Running on/with	Platform Versions
Tp Link Nc200	All versions

Configuration H

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Tp Link Kc300s2 Firmware	Up to 2020-02-09

Running on/with	Platform Versions
Tp Link Kc300s2	All versions

Configuration I

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Tp Link Kc310s2 Firmware	Up to 2020-02-09

Running on/with	Platform Versions
Tp Link Kc310s2	All versions

Configuration J

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Tp Link Kc200 Firmware	Up to 2020-02-09

Running on/with	Platform Versions
Tp Link Kc200	All versions

Configuration K

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Tp Link Tapo C200 Firmware	Up to 2020-02-09

Running on/with	Platform Versions
Tp Link Tapo C200	All versions

Configuration L

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Tp Link Tapo C100 Firmware	Up to 2020-02-09

Running on/with	Platform Versions
Tp Link Tapo C100	All versions

Configuration M

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Tp Link Tl Sc3430 Firmware	Up to 2020-02-09

Running on/with	Platform Versions
Tp Link Tl Sc3430	All versions

Configuration N

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Tp Link Tl Sc3430n Firmware	Up to 2020-02-09

Running on/with	Platform Versions
Tp Link Tl Sc3430n	All versions

Configuration O

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Tp Link Tl Sc4171g Firmware	Up to 2020-02-09

Running on/with	Platform Versions
Tp Link Tl Sc4171g	All versions

References (2)

https://www.cnvd.org.cn/flaw/show/1916613

Source: cve@mitre.org

Third Party Advisory

https://www.cnvd.org.cn/flaw/show/1916613

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

Timeline

No history available yet.