Buffer Overflow Vulnerability in Tapo C200 V3 by TP-Link
CVE-2025-8065

8.7HIGH

Key Information:

Vendor

Tp-link Systems Inc.

Status
Tapo C200 V3
Tapo C520ws V2.6
Vendor
CVE Published:
20 December 2025

What is CVE-2025-8065?

A buffer overflow vulnerability has been identified in the ONVIF XML parser of the Tapo C200 V3 camera by TP-Link. An unauthenticated attacker on the same local network can exploit this flaw by sending specially crafted SOAP XML requests. These requests may lead to a memory overflow, causing the device to crash and resulting in a denial-of-service condition, which impacts the camera's functionality.

Affected Version(s)

Tapo C200 V3 0

Tapo C520WS v2.6 0 < 1.2.4 Build 260326 Rel.24666n

References

https://www.tp-link.com/us/support/download/tapo-c200/v3/...
patch
https://www.tp-link.com/us/support/faq/4849/
vendor-advisory
https://www.tp-link.com/us/support/download/tapo-c520ws/#...
patch

CVSS V4

Score:
8.7
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Adjacent Network
Attack Complexity:
Low
Attack Required:
None
Privileges Required:
Undefined
User Interaction:
None

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

Simone Margaritelli (evilsocket)
.