CVE-2024-31340

Publication date

2024-05-22 05:29:04

Family

jpcert

State

PUBLISHED

Description

TP-Link Tether versions prior to 4.5.13 and TP-Link Tapo versions prior to 3.3.6 do not properly validate certificates, which may allow a remote unauthenticated attacker to eavesdrop on an encrypted communication via a man-in-the-middle attack.