3 matches found
CVE-2020-7232
Evoko Home devices 1.31 through 1.37 allow remote attackers to obtain sensitive information such as usernames and password hashes via a WebSocket request, as demonstrated by the sockjs/224/uf1psgff/websocket URI at a wss:// URL...
CVE-2020-7232
Evoko Home devices 1.31 through 1.37 allow remote attackers to obtain sensitive information such as usernames and password hashes via a WebSocket request, as demonstrated by the sockjs/224/uf1psgff/websocket URI at a wss:// URL...
CVE-2020-7232
CVE-2020-7232 affects Evoko Home devices version 1.31 through 1.37. The issue enables remote attackers to disclose sensitive information (e.g., usernames and password hashes) by sending a WebSocket request to the sockjs/224/uf1psgff/websocket URI over a secure WebSocket (wss://). The available co...