CVE-2026-34121HIGH 8.8EPSS p35.5%

CVE-2026-34121CVE-2026-34121

Description

An authentication bypass vulnerability within the HTTP handling of the DS configuration service in TP-Link Tapo C520WS v2.6 was identified, due to inconsistent parsing and authorization logic in JSON requests during authentication check. An unauthenticated attacker can append an authentication-exempt action to a request containing privileged DS do actions, bypassing authorization checks. Successful exploitation allows unauthenticated execution of restricted configuration actions, which may result in unauthorized modification of device state.

Scoring

CVSS 3.18.8 (HIGH)
VectorCVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS0.45% probability of exploitation · percentile 35.5% · 2026-06-18T12:00:27Z
Published2026-04-02
Last modified2026-04-06

Underlying weaknesses· 1

CWE-287

References

  1. https://www.tp-link.com/en/support/download/tapo-c520ws/#Firmware-Release-Notes
  2. https://www.tp-link.com/us/support/download/tapo-c520ws/#Firmware-Release-Notes
  3. https://www.tp-link.com/us/support/faq/5047/

1

TypeTargetConfidenceTier
WeaknessImproper Authenticationcwe-2870%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2026-34123
CVE
CVE-2026-0652
CVE
CVE-2026-8714
CVE
CVE-2025-14300
CVE
CVE-2026-3294
CVE
CVE-2026-6241
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.