Vulnerabilities

CVE-2025-15557

by Fred · 05/02/2026

An Improper Certificate Validation vulnerability in TP-Link Tapo H100 v1 and Tapo P100 v1 allows an on-path attacker on the same network segment to intercept and modify encrypted device-cloud communications. This may compromise the confidentiality and integrity of device-to-cloud communication, enabling manipulation of device data or operations.

More information : https://www.tp-link.com/en/support/download/tapo-h100/

Similar

Tags: Cybersecurity Alert