cbcvebase.

Tp-Link Nc200 Firmware vulnerabilities

5 known vulnerabilities affecting tp-link/nc200_firmware.

Total CVEs
5
CISA KEV
0
Public exploits
2
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH3MEDIUM1

Vulnerabilities

Page 1 of 1
CVE-2020-12109P2HIGHCVSS 8.8PoCv2.1.6v2.1.92020-05-04
CVE-2020-12109 [HIGH] CWE-78 CVE-2020-12109: Certain TP-Link devices allow Command Injection. This affects NC200 2.1.9 build 200225, NC210 1.0.9 Certain TP-Link devices allow Command Injection. This affects NC200 2.1.9 build 200225, NC210 1.0.9 build 200304, NC220 1.3.0 build 200304, NC230 1.3.0 build 200304, NC250 1.3.0 build 200304, NC260 1.5.2 build 200304, and NC450 1.5.3 build 200304.
nvd
CVE-2020-12110P2CRITICALCVSS 9.8PoCv2.1.6v2.1.92020-05-04
CVE-2020-12110 [CRITICAL] CWE-798 CVE-2020-12110: Certain TP-Link devices have a Hardcoded Encryption Key. This affects NC200 2.1.9 build 200225, N210 Certain TP-Link devices have a Hardcoded Encryption Key. This affects NC200 2.1.9 build 200225, N210 1.0.9 build 200304, NC220 1.3.0 build 200304, NC230 1.3.0 build 200304, NC250 1.3.0 build 200304, NC260 1.5.2 build 200304, and NC450 1.5.3 build 200304.
nvd
CVE-2020-13224P3HIGHCVSS 8.8≤ 2.1.102020-06-17
CVE-2020-13224 [HIGH] CWE-120 CVE-2020-13224: TP-LINK NC200 devices through 2.1.10 build 200401, NC210 devices through 1.0.10 build 200401, NC220 TP-LINK NC200 devices through 2.1.10 build 200401, NC210 devices through 1.0.10 build 200401, NC220 devices through 1.3.1 build 200401, NC230 devices through 1.3.1 build 200401, NC250 devices through 1.3.1 build 200401, NC260 devices through 1.5.3 build_200401, and NC450 devices through 1.5.4 build 200401 have a Buffer Overflow
nvd
CVE-2020-10231P3HIGHCVSS 7.5v2.1.6v2.1.7+1 more2020-04-01
CVE-2020-10231 [HIGH] CWE-476 CVE-2020-10231: TP-Link NC200 through 2.1.8_Build_171109, NC210 through 1.0.9_Build_171214, NC220 through 1.3.0_Buil TP-Link NC200 through 2.1.8_Build_171109, NC210 through 1.0.9_Build_171214, NC220 through 1.3.0_Build_180105, NC230 through 1.3.0_Build_171205, NC250 through 1.3.0_Build_171205, NC260 through 1.5.1_Build_190805, and NC450 through 1.5.0_Build_181022 devices allow a remote NULL Pointer Dereference.
nvd
CVE-2020-11445P4MEDIUMCVSS 5.3≤ 2020-02-092020-04-01
CVE-2020-11445 [MEDIUM] CVE-2020-11445: TP-Link cloud cameras through 2020-02-09 allow remote attackers to bypass authentication and obtain TP-Link cloud cameras through 2020-02-09 allow remote attackers to bypass authentication and obtain sensitive information via vectors involving a Wi-Fi session with GPS enabled, aka CNVD-2020-04855.
nvd
Tp-Link Nc200 Firmware vulnerabilities | cvebase