Lucene search
K

11 matches found

RedhatCVE
RedhatCVE
added 2026/01/07 9:27 a.m.16 views

CVE-2019-12821

A vulnerability was found in the app 2.0 of the Shenzhen Jisiwei i3 robot vacuum cleaner, while adding a device to the account using a QR-code. The QR-code follows an easily predictable pattern that depends only on the specific device ID of the robot vacuum cleaner. By generating a QR-code...

5.8CVSS6.9AI score0.00949EPSS
Exploits0References1
CNVD
CNVD
added 2019/07/22 12:0 a.m.3 views

Jisiwei i3 robot vacuum cleaner encryption issue vulnerability

Jisiwei i3 is a vacuuming robot from the Chinese company Jisiwei. A vulnerability with encryption issues exists in version 2.0 of the Jisiwei i3 robot vacuum cleaner APP. The vulnerability stems from a networked system or product that does not properly utilize relevant cryptographic algorithms,...

5.6CVSS6.8AI score0.00479EPSS
Exploits0References1
NVD
NVD
added 2019/07/19 6:15 p.m.28 views

CVE-2019-12821

A vulnerability was found in the app 2.0 of the Shenzhen Jisiwei i3 robot vacuum cleaner, while adding a device to the account using a QR-code. The QR-code follows an easily predictable pattern that depends only on the specific device ID of the robot vacuum cleaner. By generating a QR-code...

5.8CVSS5.2AI score0.00949EPSS
Exploits0References1
NVD
NVD
added 2019/07/19 6:15 p.m.24 views

CVE-2019-12820

A vulnerability was found in the app 2.0 of the Shenzhen Jisiwei i3 robot vacuum cleaner. Actions performed on the app such as changing a password, and personal information it communicates with the server, use unencrypted HTTP. As an example, while logging in through the app to a Jisiwei account,...

5.6CVSS5AI score0.00479EPSS
Exploits0References1
OSV
OSV
added 2019/07/19 6:15 p.m.2 views

CVE-2019-12821

A vulnerability was found in the app 2.0 of the Shenzhen Jisiwei i3 robot vacuum cleaner, while adding a device to the account using a QR-code. The QR-code follows an easily predictable pattern that depends only on the specific device ID of the robot vacuum cleaner. By generating a QR-code...

4.8CVSS5.9AI score0.00949EPSS
Exploits0References1
Prion
Prion
added 2019/07/19 6:15 p.m.19 views

Design/Logic Flaw

A vulnerability was found in the app 2.0 of the Shenzhen Jisiwei i3 robot vacuum cleaner. Actions performed on the app such as changing a password, and personal information it communicates with the server, use unencrypted HTTP. As an example, while logging in through the app to a Jisiwei account,...

4.3CVSS4.9AI score0.00479EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2019/07/19 6:15 p.m.12 views

Code injection

A vulnerability was found in the app 2.0 of the Shenzhen Jisiwei i3 robot vacuum cleaner, while adding a device to the account using a QR-code. The QR-code follows an easily predictable pattern that depends only on the specific device ID of the robot vacuum cleaner. By generating a QR-code...

5.8CVSS5.2AI score0.00949EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2019/07/19 5:20 p.m.156 views

CVE-2019-12821

The CVE concerns the Shenzhen Jisiwei i3 robot vacuum cleaner’s app 2.0. A QR code used to add a device to an account encodes the device ID using a predictable pattern (JSW + six digits). An attacker can generate a QR-code with a target device ID to connect an arbitrary device and gain full acces...

5.8CVSS5.2AI score0.00949EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2019/07/19 5:20 p.m.31 views

CVE-2019-12821

A vulnerability was found in the app 2.0 of the Shenzhen Jisiwei i3 robot vacuum cleaner, while adding a device to the account using a QR-code. The QR-code follows an easily predictable pattern that depends only on the specific device ID of the robot vacuum cleaner. By generating a QR-code...

5.2AI score0.00949EPSS
Exploits0References1
CVE
CVE
added 2019/07/19 5:18 p.m.150 views

CVE-2019-12820

The CVE-2019-12820 entry concerns the Shenzhen Jisiwei i3 robot vacuum cleaner app 2.0 (Android/iOS). The vulnerability is that login and other personal information communications between the app and its server are sent over unencrypted HTTP, enabling a local-network MiTM attacker to capture cred...

5.6CVSS4.9AI score0.00479EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2019/07/19 5:18 p.m.30 views

CVE-2019-12820

A vulnerability was found in the app 2.0 of the Shenzhen Jisiwei i3 robot vacuum cleaner. Actions performed on the app such as changing a password, and personal information it communicates with the server, use unencrypted HTTP. As an example, while logging in through the app to a Jisiwei account,...

5AI score0.00479EPSS
Exploits0References1
Rows per page
Query Builder