Security Advisory

CVE-2025-14300

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-12-20 00:43:39

Last updated 2026-04-03 21:39:17

Assigner TPLink

State PUBLISHED

Description

The HTTPS service on Tapo C200 V3 exposes a connectAP interface without proper authentication. An unauthenticated attacker on the same local network segment can exploit this to modify the device’s Wi-Fi configuration, resulting in loss of connectivity and denial-of-service (DoS).

← Browse all CVEs View on cve.org ↗