EUVD-2018-19010

Malware in sbrugna...

CVE-2018-7276

An issue was discovered on Lutron Quantum BACnet Integration 2.0 firmware 3.2.243 devices. Remote attackers can obtain potentially sensitive information via a /DbXmlInfo.xml request, as demonstrated by the Latitude/Longitude of the device...

Lutron Quantum BACnet Integration Information Disclosure Vulnerability

Lutron Quantum BACnet Integration is a lighting control system from Lutron Electronics, USA. A security vulnerability exists in Lutron Quantum BACnet Integration version 2.0 using firmware version 3.2.243, which stems from the program not properly verifying a user's request before displaying...

CVE-2018-8880

Lutron Quantum BACnet Integration 2.0 firmware 3.2.243 doesn't check for correct user authentication before showing the /deviceIP information, which leads to internal network information disclosure...

CVE-2018-8880

Lutron Quantum BACnet Integration 2.0 firmware 3.2.243 doesn't check for correct user authentication before showing the /deviceIP information, which leads to internal network information disclosure...

Information disclosure

Lutron Quantum BACnet Integration 2.0 firmware 3.2.243 doesn't check for correct user authentication before showing the /deviceIP information, which leads to internal network information disclosure...

CVE-2018-8880

Lutron Quantum BACnet Integration 2.0 (firmware 3.2.243) is affected. The vulnerability arises from not verifying user authentication before displaying /deviceIP, leading to disclosure of internal network information (e.g., internal IP, subnet, gateway, and service ports). Multiple sources (NVD e...

Lutron Quantum BACnet Integration Sensitive Information Disclosure Vulnerability

Lutron Quantum BACnet Integration is a lighting control system from Lutron Electronics, USA. A security vulnerability exists in Lutron Quantum BACnet Integration version 2.0 using firmware version 3.2.243. A remote attacker can exploit the vulnerability by sending a /DbXmlInfo.xml request to obta...