CVE-2026-34124 HIGH

CVE-2026-34124: Denial of Service via Path Expansion Overflow in HTTP Service in TP-Link Tapo C520WS

Vendor Tp-Link Systems Inc.
Product Tapo C520WS v2.6
Weakness CWE-120
Published April 2, 2026
Last update April 3, 2026

CVSS base score

7.1/10
Attack vector Adjacent
Attack complexity Low
Privileges required None
User interaction None
Confidentiality
Integrity

CVSS vector

CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

What the vulnerability does

01Description

A denial-of-service vulnerability was identified in TP-Link Tapo C520WS v2.6 within the HTTP request path parsing logic. The implementation enforces length restrictions on the raw request path but does not account for path expansion performed during normalization. An attacker on the adjacent network may send a crafted HTTP request to cause buffer overflow and memory corruption, leading to system interruption or device reboot.

Key dates

02Disclosure timeline

April 2, 2026 CVE published
April 3, 2026 Record updated

Related vulnerabilities

04Related CVE