Tasmota Project Tasmota — known CVE vulnerabilities
Every CVE whose affected-product data names Tasmota Project Tasmota, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2022-43294 — CVSS 9.8 (critical): Tasmota before commit 066878da4d4762a9b6cb169fdf353e804d735cfd was discovered to contain a stack overflow via the ClientPortPtr parameter…
CVE-2021-36603 — CVSS 6.1 (medium): Cross Site Scripting (XSS) in Tasmota firmware 6.5.0 allows remote attackers to inject JavaScript code via a crafted string in the field…