A vulnerability, which was classified as critical , has been found in TP-Link Tapo C520WS v2 . Impacted is an unknown function of the component ONVIF Subscribe Service . This manipulation causes format string. This vulnerability is registered as CVE-2026-6242 . Remote exploitation of the attack is possible. No exploit is available.