CVE-2021-41292

2021-09-3011:15:07

CWE-287

CWE-288

[email protected]

web.nvd.nist.gov

ecoa

bas

controller

authentication bypass

vulnerability

cookie poisoning

smart homes

buildings

hvac

nvd

9.1 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

50.7%

JSON

CPENameOperatorVersion
ecoa:ecs_router_controller\-ecs_firmwareecoa ecs router controller-ecs firmwareeq-
ecoa:riskbuster_firmwareecoa riskbuster firmwareeq-
ecoa:riskterminatorecoa riskterminatoreq-

CPE	Name	Operator	Version
ecoa:ecs_router_controller\-ecs_firmware	ecoa ecs router controller-ecs firmware	eq	-
ecoa:riskbuster_firmware	ecoa riskbuster firmware	eq	-
ecoa:riskterminator	ecoa riskterminator	eq	-

References

www.twcert.org.tw/tw/cp-132-5128-b075a-1.html