164 matches found
CVE-2021-40825
nLight ECLYPSE nECY system Controllers running software prior to 1.17.21245.754 contain a default key vulnerability. The nECY does not force a change to the key upon the initial configuration of an affected device. nECY system controllers utilize an encrypted channel to secure SensorViewTM...
CVE-2021-40825
nLight ECLYPSE nECY system Controllers running software prior to 1.17.21245.754 contain a default key vulnerability. The nECY does not force a change to the key upon the initial configuration of an affected device. nECY system controllers utilize an encrypted channel to secure SensorViewTM...
Input validation
nLight ECLYPSE nECY system Controllers running software prior to 1.17.21245.754 contain a default key vulnerability. The nECY does not force a change to the key upon the initial configuration of an affected device. nECY system controllers utilize an encrypted channel to secure SensorViewTM...
CVE-2021-40825
CVE-2021-40825 affects Acuity Brands nLight ECLYPSE (nECY) system controllers running software older than 1.17.21245.754. The issue is described as a default key vulnerability where the device does not force a key change at initial configuration, impacting the SensorView Password (nLight Explorer...
CVE-2021-40825
nLight ECLYPSE nECY system Controllers running software prior to 1.17.21245.754 contain a default key vulnerability. The nECY does not force a change to the key upon the initial configuration of an affected device. nECY system controllers utilize an encrypted channel to secure SensorViewTM...
Smart lighting security
Smart lighting systems create great opportunity for improved efficiency, cost savings and easy management. The long lifespan and low power requirement of LED luminaires and lamps means that it’s worth investing in replacing older fluorescent and incandescent lighting. RJ45 connections delivering...
pacificlighting.net Cross Site Scripting vulnerability OBB-1470731
Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has:       a. verified the vulnerability and confirmed its existence;       b. notified the website operator about its existence...
The vulnerability of the Intel LED Manager for NUC software, related to authentication deficiencies, allows a hacker to trigger a service failure.
The vulnerability of the Intel LED Manager for NUC software-related lighting control systems is related to authentication deficiencies. Exploiting this vulnerability could allow an attacker to cause malfunctions in the system’s operation...
russell-lighting.com Cross Site Scripting vulnerability OBB-1381764
Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has:       a. verified the vulnerability and confirmed its existence;       b. notified the website operator about its existence...
organiclighting.com Cross Site Scripting vulnerability OBB-1284856
Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has:       a. verified the vulnerability and confirmed its existence;       b. notified the website operator about its existence...
Low-power Bluetooth (BLE) connectivity vulnerability in LED smart bulbs at Foshan Electric Lighting Co.
LED smart light bulb is a new technology light source, which has the advantages of beauty, fashion, energy saving, environmental protection, safety and so on, and it can be controlled by intelligent devices. Foshan Electric Lighting Co., Ltd LED smart bulb there is a low-power Bluetooth BLE...
ENTTEC Lighting Controllers (Update A)
1. EXECUTIVE SUMMARY CVSS v3 8.8 ATTENTION: Exploitable remotely/low skill level to exploit/public exploits are available Vendor: ENTTEC Equipment: Datagate Mk2, Storm 24, Pixelator, E-Streamer Mk2 Vulnerabilities: Use of Hard-coded Cryptographic Key, Cross-site Scripting, Improper Access Control...
ushiolighting.co.jp Cross Site Scripting vulnerability OBB-1203902
Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has:       a. verified the vulnerability and confirmed its existence;       b. notified the website operator about its existence...
organiclighting.com Cross Site Scripting vulnerability
Open Bug Bounty ID: OBB-1181335 Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has:       a. verified the vulnerability and confirmed its existence;       b. notified the website...
smart-lighting.com.tw Cross Site Scripting vulnerability
Open Bug Bounty ID: OBB-1157483 Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has:       a. verified the vulnerability and confirmed its existence;       b. notified the website...
G.SKILL Trident Z Lighting Control Elevation of Privilege Vulnerability
G.SKILL Trident Z Lighting Control is a set of lighting control software from G.SKILL, Taiwan, China. An elevation of privilege vulnerability exists in the ene.sys driver in G.SKILL Trident Z Lighting Control 1.00.08 and earlier versions. An attacker can exploit this vulnerability to elevate...
Input validation
The ene.sys driver in G.SKILL Trident Z Lighting Control through 1.00.08 exposes mapping and un-mapping of physical memory, reading and writing to Model Specific Register MSR registers, and input from and output to I/O ports to local non-privileged users. This leads to privilege escalation to NT...
CVE-2020-12446
The ene.sys driver in G.SKILL Trident Z Lighting Control through 1.00.08 exposes mapping and un-mapping of physical memory, reading and writing to Model Specific Register MSR registers, and input from and output to I/O ports to local non-privileged users. This leads to privilege escalation to NT...
CVE-2020-12446
The CVE-2020-12446 entry concerns the ene.sys driver in G.SKILL Trident Z Lighting Control (up to version 1.00.08). The vulnerability arises from exposing mapping/unmapping of physical memory, and reading/writing to MSR registers, plus input/output with I/O ports, to local non-privileged users. T...
CVE-2020-11607
An issue was discovered on Samsung mobile devices with P9.0 and Q10.0 software. Notification exposure occurs in Lockdown mode because of the Edge Lighting application. The Samsung ID is SVE-2020-16680 April 2020...