35 matches found
CVE-2023-31761
Weak security in the transmitter of Blitzwolf BW-IS22 Smart Home Security Alarm v1.0 allows attackers to gain full access to the system via a code replay attack...
CVE-2023-31762
Weak security in the transmitter of Digoo DG-HAMB Smart Home Security System v1.0 allows attackers to gain full access to the system via a code replay attack...
CVE-2021-47706
COMMAX Biometric Access Control System 1.0.0 contains an authentication bypass vulnerability that allows unauthenticated attackers to access sensitive information and circumvent physical controls in smart homes and buildings by exploiting cookie poisoning. Attackers can forge cookies to bypass...
EUVD-2019-6815
Malware in sbrugna...
EUVD-2023-36052
Malicious code in bioql PyPI...
EUVD-2022-29602
Malicious code in bioql PyPI...
EUVD-2023-43542
Malicious code in bioql PyPI...
EUVD-2023-36053
Malicious code in bioql PyPI...
EUVD-2023-23969
Malicious code in bioql PyPI...
Tuya Smart Life App 安全漏洞
Tuya Smart Life App is a smart home control app from Chinese company Tuya Tuya. A security vulnerability exists in Tuya Smart Life App version 5.6.1, which originates from an attacker being able to control the device without privileges via the Matter protocol...
CVE-2019-15911
An issue was discovered on ASUS HG100, MW100, WS-101, TS-101, AS-101, MS-101, DL-101 devices using ZigBee PRO. Because of insecure key transport in ZigBee communication, attackers can obtain sensitive information, cause the multiple denial of service attacks, take over smart home devices, and...
CVE-2025-31654
An attacker can get information about the groups of the smart home devices for arbitrary users i.e., "rooms"...
Smart home security advice. Ring, SimpliSafe, Swann, and Yale
Introduction This guide covers the security of smart home security products from Ring, Yale, Swann, and SimpliSafe. Whether you're looking to monitor your property remotely, enhance your home's security, or see who’s at the front door, this guide will provide you with valuable insights. We have...
Qolsys IQ Panel 4 and Qolsys IQ4 Hub Security Vulnerabilities
The Qolsys IQ Panel 4 and Qolsys IQ4 Hub are both wireless smart home security system alarm panels from Qolsys. A security vulnerability exists in the Qolsys IQ Panel 4 and Qolsys IQ4 Hub that stems from allowing unauthorized access to settings...
A week in security (January 22 – January 28)
Last week on Malwarebytes Labs: 10 things to do to improve your online privacy Ring curtails law enforcement’s access to footage Malicious ads for restricted messaging applications target Chinese users Malwarebytes wins every MRG Effitas award for 2 years in a row AI likely to boost ransomware,...
How to lock out your ex-partner from your smart home
Stalkers can use all kinds of apps, gadgets, devices, and phones to spy on their targets, which are often their ex-partners. Unfortunately, while they no doubt have many positive uses, smart home devices give stalkers an array of tools to keep an eye on their targets. If you are the partner that...
Design/Logic Flaw
Missing encryption in the RFID tag of Digoo DG-HAMB Smart Home Security System v1.0 allows attackers to create a cloned tag via brief physical proximity to the original device...
CVE-2023-39842
CVE-2023-39842 concerns the Digoo DG-HAMB Smart Home Security System (v1.0) where the RFID tag lacks encryption, enabling an attacker to clone a tag with only brief physical proximity to the device. The NVD entry records a CVSSv3.1 base score of 2.4 (LOW) with AV:P, AC:L, PR:N, UI:N, S:U, C:N, I:...
CVE-2023-39842
Missing encryption in the RFID tag of Digoo DG-HAMB Smart Home Security System v1.0 allows attackers to create a cloned tag via brief physical proximity to the original device...
CVE-2023-39842
Missing encryption in the RFID tag of Digoo DG-HAMB Smart Home Security System v1.0 allows attackers to create a cloned tag via brief physical proximity to the original device...