CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

OSRAM SYLVANIA Osram Lightify Home is a set of open IoT platforms for automated control of lighting devices from OSRAM Germany. A security vulnerability exists in OSRAM SYLVANIA Osram Lightify Home versions prior to 2016-07-26. A remote attacker can exploit the vulnerability to execute arbitrary...

9.8CVSS7.6AI score0.02043EPSS

Exploits2References1

CNVD•added 2017/06/29 12:0 a.m.•2 views

OSRAM SYLVANIA Osram Lightify Home Man-in-the-Middle Attack Vulnerability

OSRAM SYLVANIA Osram Lightify Home is a set of open IoT platforms for automated control of lighting devices from OSRAM Germany. OSRAM SYLVANIA Osram Lightify Home A security vulnerability exists in versions 2016-07-26 and earlier, which stems from the program's failure to use SSL pinning.An...

7.5CVSS6.7AI score0.00487EPSS

Exploits2References1

CNVD•added 2017/06/29 12:0 a.m.•9 views

OSRAM SYLVANIA Osram Lightify Pro Network Command Replay Vulnerability

OSRAM SYLVANIA Osram Lightify Pro is an open IoT platform for automated control of lighting devices from OSRAM Germany. A security vulnerability exists in OSRAM SYLVANIA Osram Lightify Pro 2016-07-26 and prior versions. An attacker can exploit the vulnerability to obtain and re-execute used...

7.5CVSS6.9AI score0.00487EPSS

Exploits2References1

CNVD•added 2017/06/29 12:0 a.m.•3 views

OSRAM SYLVANIA Osram Lightify Home Network Command Replay Vulnerability

OSRAM SYLVANIA Osram Lightify Home is a set of open IoT platforms for automated control of lighting devices from OSRAM Germany. A security vulnerability exists in OSRAM SYLVANIA Osram Lightify Home versions 2016-07-26 and earlier. An attacker could use the vulnerability to capture and recover...

7.5CVSS7AI score0.00487EPSS

Exploits2References1

CNVD•added 2017/06/29 12:0 a.m.•3 views

OSRAM SYLVANIA Osram Lightify Home Information Disclosure Vulnerability

OSRAM SYLVANIA Osram Lightify Home is an open IoT platform for automated control of lighting devices from German company OSRAM. A security vulnerability exists in OSRAM SYLVANIA Osram Lightify Home versions prior to 2016-07-26, which originates from the program storing the PSK in plaintext in the...

7.5CVSS6.8AI score0.00487EPSS

Exploits1References1

OSV•added 2017/04/10 3:59 a.m.•3 views

CVE-2016-5056

OSRAM SYLVANIA Osram Lightify Pro before 2016-07-26 uses only 8 hex digits for a PSK...

7.5CVSS5.8AI score0.00487EPSS

Exploits1References1

OSV•added 2017/04/10 3:59 a.m.•1 views

CVE-2016-5057

OSRAM SYLVANIA Osram Lightify Pro through 2016-07-26 does not use SSL pinning...

7.5CVSS5.8AI score0.00487EPSS

Exploits1References1

OSV•added 2017/04/10 3:59 a.m.•2 views

CVE-2016-5053

OSRAM SYLVANIA Osram Lightify Home before 2016-07-26 allows remote attackers to execute arbitrary commands via TCP port 4000...

9.8CVSS6AI score0.00487EPSS

Exploits1References1

OSV•added 2017/04/10 3:59 a.m.•1 views

CVE-2016-5059

OSRAM SYLVANIA Osram Lightify Pro before 2016-07-26 allows attackers to obtain sensitive information by reading screenshots under /private/var/mobile/Containers/Data/Application...

6.5CVSS5.8AI score0.00487EPSS

Exploits2References1