cvedb.io
CVE-2021-4045
CRITICAL · CVSS 9.8
EPSS exploitation probability: 0%
Published 2022-03-10T17:44:51.300 · Last modified 2026-06-17T04:18:56.823

Summary

TP-Link Tapo C200 IP camera, on its 1.1.15 firmware version and below, is affected by an unauthenticated RCE vulnerability, present in the uhttpd binary running by default as root. The exploitation of this vulnerability allows an attacker to take full control of the camera.

Affected products

tp-link — tapo_c200_firmware

Does this affect you?

Add your gear to cvedb and we'll alert you only when tp-link ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.