OSRAM SYLVANIA Osram Lightify Home Pre-Authentication Command Execution Vulnerability

OSRAM SYLVANIA Osram Lightify Home is a set of open IoT platforms for automated control of lighting devices from OSRAM Germany. A security vulnerability exists in OSRAM SYLVANIA Osram Lightify Home versions prior to 2016-07-26. A remote attacker can exploit the vulnerability to execute arbitrary...

OSRAM SYLVANIA Osram Lightify Pro Network Command Replay Vulnerability

OSRAM SYLVANIA Osram Lightify Pro is an open IoT platform for automated control of lighting devices from OSRAM Germany. A security vulnerability exists in OSRAM SYLVANIA Osram Lightify Pro 2016-07-26 and prior versions. An attacker can exploit the vulnerability to obtain and re-execute used...

OSRAM SYLVANIA Osram Lightify Home Network Command Replay Vulnerability

OSRAM SYLVANIA Osram Lightify Home is a set of open IoT platforms for automated control of lighting devices from OSRAM Germany. A security vulnerability exists in OSRAM SYLVANIA Osram Lightify Home versions 2016-07-26 and earlier. An attacker could use the vulnerability to capture and recover...

CVE-2016-5054

OSRAM SYLVANIA Osram Lightify Home through 2016-07-26 allows Zigbee replay...

CVE-2016-5058

OSRAM SYLVANIA Osram Lightify Pro through 2016-07-26 allows Zigbee replay...

CVE-2016-5051

OSRAM SYLVANIA Osram Lightify Home vulnerability (pre-2016-07-26). The issue stems from the product not using SSL pinning, enabling a Man-in-the-Middle to intercept TLS-encrypted traffic. Affected versions are 2016-07-26 and earlier. The CNVD entry states this vulnerability allows an attacker to ...