CVE Details
Basic Information
| Title | TP-Link TL-IPC544EP-W4 main sub_69064 buffer overflow |
|---|---|
| Type | cve |
| Published | 2025-06-09T11:31:05.450Z |
| Last Seen |
Product Information
| Vendor | TP-Link |
|---|---|
| Product | TL-IPC544EP-W4 |
| Version | 1.0.9 Build 240428 Rel 69493n |
CVSS Information
| Base Score | 8.7 (HIGH) |
|---|---|
| Attack Vector | CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P |
| Confidentiality Impact | |
| Integrity Impact | |
| Availability Impact |
AI Analysis
| AI Description | A critical buffer overflow vulnerability in TP-Link’s TL-IPC544EP-W4 camera allows remote attacks due to improper input handling in the main function. The vendor has not responded, and a public exploit is available. |
|---|---|
| AI Severity | High |
| Vendor | TP-Link |
| Product | TL-IPC544EP-W4 |
| Affected Version | 1.0.9 Build 240428 Rel 69493n |
Affected Products
- TP-Link TL-IPC544EP-W4 1.0.9 Build 240428 Rel 69493n
Additional Information
| CVE List | |
|---|---|
| CWE List | CWE-120, CWE-119 |
| Bulletin Family |
References
Description
A vulnerability classified as critical has been found in TP-Link TL-IPC544EP-W4 1.0.9 Build 240428 Rel 69493n. Affected is the function sub_69064 of the file /bin/main. The manipulation of the argument text leads to buffer overflow. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.