Tp-Link Systems Inc Tapo C260 V1 vulnerabilities
3 known vulnerabilities affecting tp-link_systems_inc/tapo_c260_v1.
Total CVEs
3
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH2MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2026-0652P2HIGHCVSS 8.8fixed in 1.1.9 Build 251226 Rel.55870n2026-02-10
CVE-2026-0652 [HIGH] CWE-78 CVE-2026-0652: On TP-Link Tapo C260 v1, command injection vulnerability exists due to improper sanitization in cert
On TP-Link Tapo C260 v1, command injection vulnerability exists due to improper sanitization in certain POST parameters during configuration synchronization. An authenticated attacker can execute arbitrary system commands with high impact on confidentiality, integrity and availability. It may cause full device compromise.
nvd
CVE-2026-0651P3HIGHCVSS 7.8fixed in 1.1.9 Build 251226 Rel.55870n2026-02-10
CVE-2026-0651 [HIGH] CWE-22 CVE-2026-0651: A path traversal vulnerability was identified TP-Link Tapo C260 v1, D235 v1 and C520WS v2.6 within t
A path traversal vulnerability was identified TP-Link Tapo C260 v1, D235 v1 and C520WS v2.6 within the HTTP server’s handling of GET requests. The server performs path normalization before fully decoding URL encoded input and falls back to using the raw path when normalization fails. An attacker can exploit this logic flaw by supplying crafted, URL encod
nvd
CVE-2026-0653P3MEDIUMCVSS 6.5fixed in 1.1.9 Build 251226 Rel.55870n2026-02-10
CVE-2026-0653 [MEDIUM] CWE-284 CVE-2026-0653: On TP-Link Tapo C260 v1 and D235 v1, a guest‑level authenticated user can bypass intended access res
On TP-Link Tapo C260 v1 and D235 v1, a guest‑level authenticated user can bypass intended access restrictions by sending crafted requests to a synchronization endpoint. This allows modification of protected device settings despite limited privileges. An attacker may change sensitive configuration parameters without authorization, resulting in unauthor
nvd