CVE-2026-34120
Heap-Based Buffer Overflow in TP-Link Tapo C520WS Causes DoS
Publication date: 2026-04-02
Last updated on: 2026-04-06
Assigner: TPLink
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| tp-link | tapo_c520ws_firmware | to 1.2.4 (exc) |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-122 | A heap overflow condition is a buffer overflow, where the buffer that can be overwritten is allocated in the heap portion of memory, generally meaning that the buffer was allocated using a routine such as malloc(). |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability is a heap-based buffer overflow found in the TP-Link Tapo C520WS device, version 2.6. It occurs during the asynchronous parsing of local video stream content because the device does not properly align and validate buffer boundaries when processing streaming inputs.
An attacker on the same network segment can exploit this by sending specially crafted payloads that cause the device to write data beyond the allocated buffer limits, leading to heap memory corruption.
Successful exploitation results in a Denial-of-Service (DoS) condition, causing the device's process to crash or become unresponsive.
How can this vulnerability impact me? :
The primary impact of this vulnerability is a Denial-of-Service (DoS) condition on the affected device. An attacker on the same network segment can cause the device to crash or become unresponsive by exploiting the heap-based buffer overflow.
This disruption can affect the availability of the device and any services it provides, potentially interrupting video streaming or surveillance functions.