Lucene search
K

164 matches found

OSV
OSV
added 2021/09/17 5:15 p.m.3 views

CVE-2021-40825

nLight ECLYPSE nECY system Controllers running software prior to 1.17.21245.754 contain a default key vulnerability. The nECY does not force a change to the key upon the initial configuration of an affected device. nECY system controllers utilize an encrypted channel to secure SensorViewTM...

8.6CVSS5.8AI score0.01089EPSS
Exploits0References2
NVD
NVD
added 2021/09/17 5:15 p.m.16 views

CVE-2021-40825

nLight ECLYPSE nECY system Controllers running software prior to 1.17.21245.754 contain a default key vulnerability. The nECY does not force a change to the key upon the initial configuration of an affected device. nECY system controllers utilize an encrypted channel to secure SensorViewTM...

8.6CVSS0.01089EPSS
Exploits0References2
Prion
Prion
added 2021/09/17 5:15 p.m.14 views

Input validation

nLight ECLYPSE nECY system Controllers running software prior to 1.17.21245.754 contain a default key vulnerability. The nECY does not force a change to the key upon the initial configuration of an affected device. nECY system controllers utilize an encrypted channel to secure SensorViewTM...

5CVSS8.6AI score0.01089EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2021/09/17 4:54 p.m.52 views

CVE-2021-40825

CVE-2021-40825 affects Acuity Brands nLight ECLYPSE (nECY) system controllers running software older than 1.17.21245.754. The issue is described as a default key vulnerability where the device does not force a key change at initial configuration, impacting the SensorView Password (nLight Explorer...

8.6CVSS8.6AI score0.01089EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2021/09/17 4:54 p.m.24 views

CVE-2021-40825

nLight ECLYPSE nECY system Controllers running software prior to 1.17.21245.754 contain a default key vulnerability. The nECY does not force a change to the key upon the initial configuration of an affected device. nECY system controllers utilize an encrypted channel to secure SensorViewTM...

8.8AI score0.01089EPSS
Exploits0References2
Pen Test Partners Blog
Pen Test Partners Blog
added 2021/05/21 6:54 a.m.16 views

Smart lighting security

Smart lighting systems create great opportunity for improved efficiency, cost savings and easy management. The long lifespan and low power requirement of LED luminaires and lamps means that it’s worth investing in replacing older fluorescent and incandescent lighting. RJ45 connections delivering...

7.2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2020/10/31 5:1 p.m.4 views

pacificlighting.net Cross Site Scripting vulnerability OBB-1470731

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

6.2AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2020/10/07 12:0 a.m.7 views

The vulnerability of the Intel LED Manager for NUC software, related to authentication deficiencies, allows a hacker to trigger a service failure.

The vulnerability of the Intel LED Manager for NUC software-related lighting control systems is related to authentication deficiencies. Exploiting this vulnerability could allow an attacker to cause malfunctions in the system’s operation...

4.6CVSS5.5AI score0.003EPSS
Exploits0References3Affected Software1
Openbugbounty
Openbugbounty
added 2020/10/04 2:34 p.m.7 views

russell-lighting.com Cross Site Scripting vulnerability OBB-1381764

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

6.2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2020/08/29 2:2 p.m.7 views

organiclighting.com Cross Site Scripting vulnerability OBB-1284856

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

6.2AI score
Exploits0
CNVD
CNVD
added 2020/08/01 12:0 a.m.2 views

Low-power Bluetooth (BLE) connectivity vulnerability in LED smart bulbs at Foshan Electric Lighting Co.

LED smart light bulb is a new technology light source, which has the advantages of beauty, fashion, energy saving, environmental protection, safety and so on, and it can be controlled by intelligent devices. Foshan Electric Lighting Co., Ltd LED smart bulb there is a low-power Bluetooth BLE...

7.2AI score
Exploits0
ICS
ICS
added 2020/06/25 12:0 a.m.100 views

ENTTEC Lighting Controllers (Update A)

1. EXECUTIVE SUMMARY CVSS v3 8.8 ATTENTION: Exploitable remotely/low skill level to exploit/public exploits are available Vendor: ENTTEC Equipment: Datagate Mk2, Storm 24, Pixelator, E-Streamer Mk2 Vulnerabilities: Use of Hard-coded Cryptographic Key, Cross-site Scripting, Improper Access Control...

10CVSS8.5AI score0.02016EPSS
Exploits4References5
Openbugbounty
Openbugbounty
added 2020/06/22 3:4 p.m.6 views

ushiolighting.co.jp Cross Site Scripting vulnerability OBB-1203902

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

6.2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2020/06/02 12:14 p.m.13 views

organiclighting.com Cross Site Scripting vulnerability

Open Bug Bounty ID: OBB-1181335 Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website...

Exploits0
Openbugbounty
Openbugbounty
added 2020/05/07 10:5 p.m.9 views

smart-lighting.com.tw Cross Site Scripting vulnerability

Open Bug Bounty ID: OBB-1157483 Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website...

6.2AI score
Exploits0
CNVD
CNVD
added 2020/04/30 12:0 a.m.5 views

G.SKILL Trident Z Lighting Control Elevation of Privilege Vulnerability

G.SKILL Trident Z Lighting Control is a set of lighting control software from G.SKILL, Taiwan, China. An elevation of privilege vulnerability exists in the ene.sys driver in G.SKILL Trident Z Lighting Control 1.00.08 and earlier versions. An attacker can exploit this vulnerability to elevate...

7.8CVSS6.8AI score0.00502EPSS
Exploits1References1
Prion
Prion
added 2020/04/29 2:15 p.m.15 views

Input validation

The ene.sys driver in G.SKILL Trident Z Lighting Control through 1.00.08 exposes mapping and un-mapping of physical memory, reading and writing to Model Specific Register MSR registers, and input from and output to I/O ports to local non-privileged users. This leads to privilege escalation to NT...

7.2CVSS7.5AI score0.00502EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2020/04/29 1:54 p.m.20 views

CVE-2020-12446

The ene.sys driver in G.SKILL Trident Z Lighting Control through 1.00.08 exposes mapping and un-mapping of physical memory, reading and writing to Model Specific Register MSR registers, and input from and output to I/O ports to local non-privileged users. This leads to privilege escalation to NT...

7.6AI score0.00502EPSS
Exploits1References1
CVE
CVE
added 2020/04/29 1:54 p.m.54 views

CVE-2020-12446

The CVE-2020-12446 entry concerns the ene.sys driver in G.SKILL Trident Z Lighting Control (up to version 1.00.08). The vulnerability arises from exposing mapping/unmapping of physical memory, and reading/writing to MSR registers, plus input/output with I/O ports, to local non-privileged users. T...

7.8CVSS7.5AI score0.00502EPSS
Exploits1References1Affected Software1
OSV
OSV
added 2020/04/08 4:15 p.m.3 views

CVE-2020-11607

An issue was discovered on Samsung mobile devices with P9.0 and Q10.0 software. Notification exposure occurs in Lockdown mode because of the Edge Lighting application. The Samsung ID is SVE-2020-16680 April 2020...

5.3CVSS6.1AI score0.00396EPSS
Exploits0References1
Rows per page
Query Builder