CVE-2018-20100
The CVE-2018-20100 entry concerns August Connect devices where the configuration flow between the August app and August Connect exposes home Wi‑Fi credentials. Root cause: data is transferred over an unencrypted AP and the credentials are sent via HTTP POST using the AugustWifiDevice class, with ...