NVD脆弱性詳細

Exploit、PoC検索

NVD脆弱性検索トップ

->

NVD脆弱性詳細

CVE-2026-34126

概要	TP-Link has identified a vulnerability in Tapo L535E v1.0 and v3.0, Tapo P300 v1.0, and Tapo D100C v1.0, where Bluetooth communication during the initial setup phase is transmitted in cleartext without encryption. Bluetooth is only used during initialization. An attacker within the Bluetooth range could exploit this behavior using Bluetooth sniffing or man-in-the-middle techniques, which may allow eavesdropping on Bluetooth communication, manipulate transmitted setup data and potentially gain unauthorized control of the device during initialization. An attacker within the Bluetooth range could exploit this behavior using Bluetooth sniffing or man-in-the-middle techniques, which may allow eavesdropping on Bluetooth communication, manipulate transmitted setup data and potentially gain unauthorized control of the device during initialization. D100C is the chime delivered with your Tapo camera, and it is delivered with the following Tapo products: D130, D210, D235, D225, TD21, TDB21 and TD25
公表日	2026年5月29日3:16
登録日	2026年5月29日4:15
最終更新日	2026年5月29日3:38

関連情報、対策とツール

No	URL	refsource	タグ
1	https://www.tp-link.com/en/support/download/tapo-l535e/v3/#Firmware-Release-Notes	f23511db-6c3e-4e32-a477-6aa17d310630
2	https://www.tp-link.com/en/support/download/tapo-p300/#Firmware-Release-Notes	f23511db-6c3e-4e32-a477-6aa17d310630
3	https://www.tp-link.com/jp/support/download/tapo-l535e/#Firmware-Release-Notes	f23511db-6c3e-4e32-a477-6aa17d310630
4	https://www.tp-link.com/jp/support/download/tapo-p300/#Firmware-Release-Notes	f23511db-6c3e-4e32-a477-6aa17d310630
5	https://www.tp-link.com/us/support/download/tapo-l535e/#Firmware-Release-Notes	f23511db-6c3e-4e32-a477-6aa17d310630
6	https://www.tp-link.com/us/support/faq/5106/	f23511db-6c3e-4e32-a477-6aa17d310630

共通脆弱性一覧

No	CWE	名前	URL
1	CWE-319	重要な情報の平文での送信	https://cwe.mitre.org/data/definitions/319.html