Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
CVE Vulnerability Details :
CVE-2024-31340
PUBLISHED
More InfoOfficial Page
Assigner-jpcert
Assigner Org ID-ede6fdc4-6654-4307-a26d-3331c018e2ce
View Known Exploited Vulnerability (KEV) details
Published At-22 May, 2024 | 05:29
Updated At-28 Mar, 2025 | 19:23
Rejected At-
▼CVE Numbering Authority (CNA)

TP-Link Tether versions prior to 4.5.13 and TP-Link Tapo versions prior to 3.3.6 do not properly validate certificates, which may allow a remote unauthenticated attacker to eavesdrop on an encrypted communication via a man-in-the-middle attack.

Affected Products
Vendor
TP-Link Systems Inc.TP-Link
Product
TP-Link Tether
Versions
Affected
  • prior to 4.5.13
Vendor
TP-Link Systems Inc.TP-Link
Product
TP-Link Tapo
Versions
Affected
  • prior to 3.3.6
Problem Types
TypeCWE IDDescription
textN/AImproper certificate validation
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
https://play.google.com/store/apps/details?id=com.tplink.tether
N/A
https://play.google.com/store/apps/details?id=com.tplink.iot
N/A
https://jvn.jp/en/jp/JVN29471697/
N/A
▼Authorized Data Publishers (ADP)
1. CISA ADP Vulnrichment
Affected Products
Problem Types
TypeCWE IDDescription
CWECWE-295CWE-295 Improper Certificate Validation
Metrics
VersionBase scoreBase severityVector
3.14.8MEDIUM
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
2. CVE Program Container
Affected Products
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
https://play.google.com/store/apps/details?id=com.tplink.tether
x_transferred
https://play.google.com/store/apps/details?id=com.tplink.iot
x_transferred
https://jvn.jp/en/jp/JVN29471697/
x_transferred
Details not found