NVD Vulnerability Detail

Search Exploit, PoC

NVD脆弱性検索トップ

->

NVD Vulnerability Detail

CVE-2026-1871

Summary	TP-Link Tapo C200 v5 contains a stack-based buffer overflow flaw in RTSP authentication handling due to improper validation of Authorization header field lengths, which can be triggered by a crafted authentication request. Successful exploitation causes the affected RTSP core service process to crash and triggers an automatic system reboot, resulting in a denial of service (DoS) condition. This prevents legitimate users from accessing the camera’s live video stream or management interface until the service restarts.
Publication Date	June 3, 2026, 2:16 a.m.
Registration Date	June 3, 2026, 4:18 a.m.
Last Update	June 3, 2026, 2:19 a.m.

Related information, measures and tools

No	URL	refsource	タグ
1	https://www.tp-link.com/en/support/download/tapo-c200/v5/#Firmware-Release-Notes	f23511db-6c3e-4e32-a477-6aa17d310630
2	https://www.tp-link.com/kr/support/download/tapo-c200/#Firmware-Release-Notes	f23511db-6c3e-4e32-a477-6aa17d310630
3	https://www.tp-link.com/us/support/download/tapo-c200/v5/#Firmware-Release-Notes	f23511db-6c3e-4e32-a477-6aa17d310630
4	https://www.tp-link.com/us/support/faq/5113/	f23511db-6c3e-4e32-a477-6aa17d310630

Common Vulnerabilities List

No	CWE	Name	URL
1	CWE-121	スタックオーバーフロー	https://cwe.mitre.org/data/definitions/121.html