Lucene search
K

6 matches found

Vulnrichment
Vulnrichment
added 2025/04/15 9:7 p.m.9 views

CVE-2025-31654 Growatt Cloud portal Authorization Bypass Through User-Controlled Key

An attacker can get information about the groups of the smart home devices for arbitrary users i.e., "rooms"...

6.9CVSS5.7AI score0.00242EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/11/07 12:0 a.m.4 views

Svakom Siime Eye 安全漏洞

Svakom Siime Eye is a smart home device from Svakom USA. A security vulnerability exists in Svakom Siime Eye version 14.1.00000001.3.330.0.0.3.14, which stems from vulnerability to cross-site request forgery attacks...

8CVSS6.7AI score0.00332EPSS
Exploits1References1
Malwarebytes
Malwarebytes
added 2021/01/04 3:52 p.m.34 views

A week in security (December 28 – January 3)

First off we would like to wish all our readers a happy and secure 2021! Last week on Malwarebytes Labs we presented an overview of developments in the SearchDimension hijackers, we looked at the most enticing cyberattacks of 2020, and we also looked back at the strangest cybersecurity events of...

0.7AI score
Exploits0
ThreatPost
ThreatPost
added 2019/03/05 5:2 a.m.108 views

BSides SF 2019: Remote-Root Bug in Logitech Harmony Hub Patched and Explained

SAN FRANCISCO – Users of Logitech’s Harmony Hub have been wide open to an attack for years because of four unpatched vulnerabilities that left any IoT device connected at risk to remote takeover. The bugs were patched by Logitech in November, but for the first time the researchers that discovered...

9.3CVSS9.6AI score0.03699EPSS
Exploits3References12
CNVD
CNVD
added 2018/08/29 12:0 a.m.1 views

Samsung SmartThings Hub Buffer Overflow Vulnerability

Samsung SmartThings Hub is a smart home management device from Samsung, South Korea. video-core HTTP server is one of the HTTP servers. A buffer overflow vulnerability exists in the /cameras/XXXX/clips handler of the video-core HTTP server in Samsung SmartThings Hub STH-ETH-250 using firmware...

9.9CVSS9.5AI score0.01804EPSS
Exploits2References1
CNVD
CNVD
added 2017/07/17 12:0 a.m.2 views

iSmartAlarm cube device encryption issue vulnerability

The iSmartAlarm cube devices are a smart home device from iSmartAlarm USA. An authentication bypass vulnerability exists in iSmartAlarm cube devices. A remote attacker can exploit this vulnerability to execute commands...

9.8CVSS9.3AI score0.03419EPSS
Exploits5References1
Rows per page
Query Builder