Buffer overflow in Tp-link Systems Inc. Tapo C520ws V2.6

CVE-2026-34122

A stack-based buffer overflow vulnerability was identified in TP-Link Tapo C520WS v2.6 within a configuration handling component due to insufficient input validation. An attacker can exploit this vulnerability by supplying an excessively…

Vulnerability class: Buffer Overflow

EPSS: 0.000 (5.4th percentile) — read the EPSS interpretation.

Affected products

Tp-link Systems Inc. Tapo C520ws V2.6 — versions 0

Weakness classification (CWE)

CWE-121 — Stack-based Buffer Overflow

References

www.tp-link.com/us/support/download/tapo-c520ws/ (patch)
www.tp-link.com/en/support/download/tapo-c520ws/ (patch)
www.tp-link.com/us/support/faq/5047/ (vendor-advisory)