CVE-2026-9770: CWE-321 Use of hard-coded cryptographic key in TP-Link Systems Inc. Kasa EC71 v4
TP-Link Kasa EC71 v4 and EC70 v4 firmware contain a hard-coded cryptographic private key stored in a read-only filesystem shared across devices. An attacker with access to the firmware image can…
Read the full articleYou might also wanna read

CISA Discloses Critical Hard-Coded Credential Vulnerabilities in Yarbo Mobile App and Cloud Infrastructure
View CSAF
RFC 9973: TLS 1.3 Extension for Using Certificates with an External Pre-Shared Key
This document specifies a TLS 1.3 extension that allows TLS clients and servers to authenticate with certificates and provide confidentialit
CERT/CC Warns of Hidden Admin Backdoor in Tenda Router Firmware
Several versions of firmware released by Chinese network device manufacturer Tenda have been found to embed an undocumented authentication b
Security flaw found: keyword information leaked from updated ciphertexts in PAUKS encryption schemes
ePrint Report

Cloudflare One Appliance, Cloudflare One, Cloudflare WAN - Post-quantum encryption support for Cloudflare One Appliance
Cloudflare One Appliance version 2026.2.0 adds post-quantum encryption support using hybrid ML-KEM (Module-Lattice-Based Key-Encapsulation M
CERT/CC Warns of Hidden Admin Backdoor in Tenda Router Firmware
Several versions of firmware released by Chinese network device manufacturer Tenda have been found to embed an undocumented authentication b

Comments
Sign in to join the conversation.
No comments yet. Be the first.