CVE-2018-6012

2018-11-01T17:29:00
ID CVE-2018-6012
Type cve
Reporter cve@mitre.org
Modified 2019-02-22T17:07:00

Description

The 'Weather Service' feature of the Green Electronics RainMachine Mini-8 (2nd generation) allows an attacker to inject arbitrary Python code via the 'Add new weather data source' upload function.