12 matches found
Multiple vulnerabilities in Loxone Smart Home
Vendor & product description: "Loxone Electronics was founded in 2009. Our focus is the development and production of control solutions for all homes. Our aim is to make home automation interesting, affordable and accessible for everyone." URL: http://www.loxone.com/enus/company/about-us.html...
Loxone Smart Home Default Admin Login (HTTP)
The remote Loxone installation has default credentials set. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
SEC Consult SA-20150514-0 :: Multiple vulnerabilities in Loxone Smart Home (part 2)
SEC Consult Vulnerability Lab Security Advisory 20150514-0 ======================================================================= title: Multiple vulnerabilities product: Loxone Smart Home vulnerable version: Firmware version 6.4.5.12 fixed version: 6.4.5.12 impact: Critical homepage:...
SEC Consult SA-20150227-0 :: Multiple vulnerabilities in Loxone Smart Home
SEC Consult Vulnerability Lab Security Advisory 20150227-0 ======================================================================= title: Multiple vulnerabilities product: Loxone Smart Home vulnerable version: Firmware: 5.49; Android-App: 3.4.1 fixed version: 6.3 impact: High homepage:...
Loxone Smart Home Miniserver Web Server Version Detection
Binary data loxonesmarthomeminiserverdetect.nbin...
Loxone Smart Home Denial of Service Vulnerability
Loxone Smart Home is a WEB-based application. A denial of service vulnerability exists in Loxone Smart Home, which allows attackers to bypass certain security restrictions and launch denial of service attacks...
Loxone Smart Home Multiple Cross-Site Scripting Vulnerabilities
Loxone Smart Home is a WEB-based application. Multiple cross-site scripting vulnerabilities in Loxone Smart Home could be exploited by an attacker to execute arbitrary HTML script and code within the context of the affected application...
Loxone Smart Home HTML Injection Vulnerability
Loxone Smart Home is a WEB-based application. Loxone Smart Home suffers from an HTML injection vulnerability that could be exploited by an attacker to execute arbitrary HTML script and code in the context of the affected application...
Loxone Smart Home HTTP Answer Splitting Vulnerability
Loxone Smart Home is a WEB-based application. Loxone Smart Home suffers from an HTTP Answer Splitting vulnerability that allows attackers to conduct HTTP Answer Splitting attacks that can lead to caching...
Loxone Smart Home Cross-Site Request Forgery Vulnerability
Loxone Smart Home is a WEB-based application. Loxone Smart Home suffers from a cross-site request forgery vulnerability that allows attackers to steal cookie-based authentication credentials and perform unauthorized operations...
Loxone Smart Home CSRF / XSS / DoS / Credential Leakage
SEC Consult Vulnerability Lab Security Advisory ======================================================================= title: Multiple vulnerabilities product: Loxone Smart Home vulnerable version: Firmware: 5.49; Android-App: 3.4.1 fixed version: 6.3 impact: High homepage: http://www.loxone.com...
Loxone Smart Home has multiple information disclosure vulnerabilities
Loxone Smart Home is a WEB-based application. Loxone Smart Home has multiple information disclosure vulnerabilities that could be exploited by remote attackers to obtain sensitive information...