Multiple TP-Link Cameras Vulnerability Allows Hackers to Launch MitM Attacks

Multiple TP-Link Cameras Vulnerability Allows Hackers to Launch MitM Attacks










TP-Link has released security updates for two vulnerabilities in its Kasa EC70 v4 and EC71 v4 smart cameras. These flaws, tracked as CVE-2026-9770 and CVE-2026-13230, could allow an attacker on the same local network to obtain sensitive information from vulnerable devices.

The most serious issue, CVE-2026-9770, is a hardware cryptographic key information disclosure vulnerability with a CVSS score of 8.6 (High). TP-Link has indicated that a hardcoded cryptographic key is embedded within the camera’s system image.

An attacker with access to the local network could exploit this exposed key to compromise the confidentiality of communications between the camera and its web management interface.

Successful exploitation could facilitate man-in-the-middle attacks, enabling the attacker to intercept traffic or obtain administrative credentials.

A man-in-the-middle attack occurs when a threat actor secretly positions themselves between a device and a service or management interface.

For example, an attacker on a shared Wi-Fi network, a compromised home router, or a poorly segmented office network could potentially observe or manipulate communications involving the affected camera.

The second flaw, CVE-2026-13230, impacts the cameras’ local discovery response mechanism. This vulnerability has received a CVSS score of 5.3, rated as Medium.

According to TP-Link, the discovery service can expose sensitive, geolocation-related information without authentication. An attacker on the same local network could send crafted discovery requests or responses to retrieve location-related data from a vulnerable camera.

TP-Link stated that this issue affects confidentiality only, with no identified impact on device integrity or availability.

Both vulnerabilities affect the Kasa EC70 v4 and EC71 v4 camera models. TP-Link has addressed these issues in firmware version 2.4.0 Build 20260520 and version 2.4.1 Build 20260621.

Users should update their camera firmware through TP-Link’s official support portal or the Kasa app, and ensure the Kasa mobile app is also updated to the latest version.

Until updates are installed, users should reduce their exposure by placing smart cameras on a separate IoT network, using strong Wi-Fi encryption, restricting access to the local network, and ensuring routers are running the latest firmware.

Network segmentation can limit an attacker’s ability to reach camera management interfaces if another device on the network is compromised. TP-Link urges customers to promptly apply available fixes, warning that unpatched devices may remain vulnerable.

 Strengthen Your SOC by Accelerating Threat Detection & Rapid Investigations. -> Integrate ANY.RUN With Your SOC Now.

The post Multiple TP-Link Cameras Vulnerability Allows Hackers to Launch MitM Attacks appeared first on Cyber Security News.






Abinaya





Go to cyber-security-news