Security Advisory

CVE-2025-1099

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-02-10 10:44:26

Last updated 2025-02-14 11:14:37

Assigner CERT-In

State PUBLISHED

Description

This vulnerability exists in Tapo C500 Wi-Fi camera due to hard-coded RSA private key embedded within the device firmware. An attacker with physical access could exploit this vulnerability to obtain cryptographic private keys which can then be used to perform impersonation, data decryption and man in the middle attacks on the targeted device.

← Browse all CVEs View on cve.org ↗