CVE-2022-41505
Published
CVSS v3
6.4
MEDIUM
CVSS v2
N/A
Affected
1
PROJECT
Description
An access control issue on TP-LInk Tapo C200 V1 devices allows physically proximate attackers to obtain root access by connecting to the UART pins, interrupting the boot process, and setting an init=/bin/sh value.
Exploiting the UART shell to get the access of root shell and dumping the content of flash chip (firmware) in the SD card
GitHub