CVE-2026-12760

Name: CVE-2026-12760 — Vulnerability Record
Brand: Quanteta Data Lab
SKU: CVE-2026-12760

HIGH

CVSS v4.0: 7.1 · EPSS: 0.0019 (8.2 percentile)

No privilegesNo user interactionResource Exhaustion

Source data as of: 2026-06-26 05:02:17 UTC

At a glance

Severity: HIGH
CVSS: 7.1 v4.0 · NVD
EPSS: 0.0019 (8.2 percentile) · FIRST.org
CISA KEV: No
Type: Resource Exhaustion · NVD CWE
Attack conditions (CVSS vector): No privilegesNo user interaction · Source: NVD Vector
Published: 2026-06-24 · Modified: 2026-06-25
References: Jump to references (3)

CVSS / EPSS / KEV

CVSS v4.0 7.1 / 10 HIGH Source: NVD

EPSS 0.0019 8.2 percentile Source: FIRST.org

CISA KEV No Source: CISA

Source — CVSS: NVD · EPSS: FIRST.org · KEV: CISA. Data & Sources

Description

A denial-of-service (DoS) vulnerability has been identified in Tapo C200 v3 in the network packet handling logic due to improper handling of IPv4 fragmented packets. An unauthenticated adjacent attacker can send crafted packets to cause excessive resource consumption, leading to instability of the device.Successful exploitation can remotely trigger a temporary denial-of-service condition, causing the camera to become unresponsive and resulting in intermittent loss of video monitoring and recording.

Record details

CVE ID: CVE-2026-12760
CVSS (v4.0): 7.1 (HIGH)
Vector: CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
EPSS: 0.0019 (8.2 percentile) — 2026-06-26
CISA KEV: No
Weakness (CWE): CWE-770
Affected configurations (CPE): 0
Published: 2026-06-24
Modified: 2026-06-25
Status: Awaiting Analysis

References

Reference URLs as listed by NVD, grouped by a mechanical match on the link's host/pattern. Labels describe the link type only.

← Back to all records

CVE-2026-12760

At a glance

CVSS / EPSS / KEV

Description

Record details

References

Related records

Same weakness type (CWE)

Published the same year