Root Access Vulnerability in Tapo D230S1 by TP-Link
CVE-2025-10991

7HIGH

Key Information:

Vendor: Tp-link Systems Inc.
Status: Tapo D230s1 V1.20
Vendor: CVE Published:; 30 September 2025

🔔 Create Tp-link Systems Inc. Vulnerability Alert

What is CVE-2025-10991?

This vulnerability allows an attacker with physical access to the Tapo D230S1 device to gain root access by connecting to the UART port. This issue impacts specific firmware versions prior to 1.2.2 Build 20250907, making it imperative for users to update their devices to mitigate the risk.

Affected Version(s)

Tapo D230S1 V1.20 0 < 1.2.2 Build 20250907

References

https://www.tp-link.com/en/support/faq/4693/

vendor-advisory

CVSS V4

Score:

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Physical

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 30, 2025
Vulnerability Reserved
Sep 25, 2025

Credit

Simon Söderberg, Andreas Lindström, and Johan Klingström of JAS Project

JSON