2 matches found
CVE-2015-6032
Qolsys IQ Panel (aka QOL) before version 1.5.1 is vulnerable due to hardcoded cryptographic keys, enabling a remote attacker to forge digital signatures for code by using a key from another installation. Affected devices accept forged updates or code as valid. The issue arises from use of hard-co...
Qolsys IQ Panel contains multiple vulnerabilities
Overview All firmware versions of Qolsys IQ Panel contain hard-coded cryptographic keys, do not validate signatures during software updates, and use a vulnerable version of Android OS. Description Qolsys IQ Panel is an Android OS-based touch screen controller for home automation devices and...