2 matches found
CVE-2023-1749 CVE-2023-1749
The listed versions of Nexx Smart Home devices lack proper access control when executing actions. An attacker with a valid NexxHome deviceId could send API requests that the affected devices would execute...
CVE-2023-1749
CVE-2023-1749 affects Nexx Smart Home devices (Nexx Garage Door Controller NXG-100B/NXG-200, Nexx Smart Plug NXPG-100W, Nexx Smart Alarm NXAL-100). The root cause is authorization bypass via a valid deviceId, allowing an attacker to send API requests that the device would execute. Partners/impact...