Back to overview

CVE-2026-9770

HIGH
8.6
CVSS 4.0
Description
Kasa EC71 v4 and EC70 v4 firmware contains a static cryptographic private key stored in a read-only filesystem that is shared across devices.  An attacker with access to the firmware image can extract the embedded key.  Successful exploitation may allow an unauthenticated attacker on the same network to use this key in the web management service, compromising the confidentiality of encrypted communications. This may enable passive decryption of traffic or active man-in-the-middle (MITM) attacks

Metadata

CVE ID
CVE-2026-9770
State
PUBLISHED
Assigner
TPLink
Reserved
2026-05-27 22:00 UTC
Published
2026-07-15 00:21 UTC
Last updated
2026-07-15 00:21 UTC
Primary CWE
CWE-321
CWE-321 Use of hard-coded cryptographic key
Vendor / Product
TP-Link Systems Inc. / Kasa EC71 v4
Sources
cve.org  ·  NVD

Severity & Metrics

8.6 HIGH CVSS 4.0
CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N
Affected products (2)
VendorProductPlatformVersions
TP-Link Systems Inc. Kasa EC70 v4 0 < 2.4.0 Build 20260520 rel.4191
TP-Link Systems Inc. Kasa EC71 v4 0 < 2.4.0 Build 20260520 rel.4191
Weakness (CWE)
CWESourceDescription
CWE-321 cna CWE-321 Use of hard-coded cryptographic key
CVSS scores (1)
ScoreSeverityVersionSourceVector
8.6 HIGH 4.0 cna CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N
Back to overview