2 matches found
CVE-2017-12096
An exploitable vulnerability exists in the WiFi management of Circle with Disney. A crafted Access Point with the same name as the legitimate one can be used to make Circle connect to an untrusted network. An attacker needs to setup an Access Point reachable by the device and to send a series of...
CVE-2017-12096
Summary: CVE-2017-12096 affects Circle with Disney. A crafted AP with the same SSID can force the device to connect to an attacker’s network, bypassing original network filtering. The vulnerability arises because Circle’s WiFi-management logic uses only the ESSID to identify the configured AP, ig...