ThreatCluster

TP-Link Smart Cameras Vulnerabilities Expose Users to Data Theft

First seen 17 Jul 2026, 16:56 UTC CybersecuritynewsGbhackers 88% similarity 71

Article Content

Browse articles
ThreatCluster

TP-Link has issued security updates for two vulnerabilities in its Kasa EC70 v4 and EC71 v4 smart cameras. The vulnerabilities, CVE-2026-9770 and CVE-2026-13230, were published on 2026-07-15 and allow attackers on the same local network to access sensitive information. CVE-2026-9770 is particularly severe, involving the disclosure of hardware cryptographic key information. Users of these camera models are at risk of credential theft and geolocation data leakage. The flaws affect version 4 of both devices, prompting immediate attention from users and network administrators. TP-Link's updates aim to mitigate these risks and protect user data.

Key Points: • Two critical vulnerabilities identified in TP-Link Kasa EC70 and EC71 smart cameras. • CVE-2026-9770 allows attackers to disclose hardware cryptographic keys. • Users are advised to apply security updates immediately to mitigate risks.

ThreatCluster AI

Timeline

2026-07-15
CVE-2026-9770 published
TP-Link disclosed a hardware cryptographic key information disclosure vulnerability affecting Kasa EC70 and EC71 v4 models.
Cybersecuritynews
2026-07-15
CVE-2026-13230 published
A second vulnerability affecting the same camera models was also published, allowing sensitive information access.
Gbhackers
2026-07-17
TP-Link releases security updates
TP-Link has released updates to address the vulnerabilities, urging users to apply them promptly.
Cybersecuritynews

Community

Browse all →