5 matches found
CVE-2025-15111
Ksenia Security lares legacy model version 1.6 contains a default credentials vulnerability that allows unauthorized attackers to gain administrative access. Attackers can exploit the weak default administrative credentials to obtain full control of the home automation system...
Unspecified Vulnerability in AVE DOMINAplus
AVE DOMINAplus is an application system from AVE Italy. The best home automation system for next generation houses. A security vulnerability exists in AVE DOMINAplus version 1.10.x and prior versions, which stems from the presence of an authentication bypass vulnerability. An attacker can exploit...
AVE DOMINAplus 访问控制错误漏洞
AVE DOMINAplus is an application system from AVE Italy. The best home automation system for next generation houses. AVE DOMINAplus version 1.10.x is vulnerable to an Access Control Error vulnerability, which can be exploited by an attacker who can use this issue to cause a Denial of Service...
AVE DOMINAplus 1.10.x Unauthenticated Remote Reboot
AVE DOMINAplus =1.10.x Unauthenticated Remote Reboot Vendor: AVE S.p.A. Product web page: https://www.ave.it | https://www.domoticaplus.it Affected version: Web Server Code 53AB-WBS - 1.10.62 Touch Screen Code TS01 - 1.0.65 Touch Screen Code TS03x-V | TS04X-V - 1.10.45a Touch Screen Code TS05 -...
AVE DOMINAplus 1.10.x Cross Site Request Forgery / Cross Site Scripting
AVE DOMINAplus =1.10.x CSRF/XSS Vulnerabilities Vendor: AVE S.p.A. Product web page: https://www.ave.it | https://www.domoticaplus.it Affected version: Web Server Code 53AB-WBS - 1.10.62 Touch Screen Code TS01 - 1.0.65 Touch Screen Code TS03x-V | TS04X-V - 1.10.45a Touch Screen Code TS05 - 1.10.3...