Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

47 matches found

EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2021-21711

Malware in sbrugna...

8.1CVSS8.1AI score0.00219EPSS
Exploits1References3
EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2018-18158

Malware in sbrugna...

9.8CVSS9.5AI score0.00457EPSS
Exploits1References2
EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2018-2616

Malware in sbrugna...

9.8CVSS9.5AI score0.00701EPSS
Exploits1References2
RedhatCVE
RedhatCVEadded 2025/05/23 4:52 a.m.4 views

CVE-2023-46892

The radio frequency communication protocol being used by Meross MSH30Q 4.5.23 is vulnerable to replay attacks, allowing attackers to record and replay previously captured communication to execute unauthorized commands or actions e.g., thermostat's temperature...

8.8CVSS7.4AI score0.00042EPSS
Exploits0
RedhatCVE
RedhatCVEadded 2025/05/22 8:7 p.m.5 views

CVE-2021-3774

Meross Smart Wi-Fi 2 Way Wall Switch MSS550X, on its 3.1.3 version and before, creates an open Wi-Fi Access Point without the required security measures in its initial setup. This could allow a remote attacker to obtain the Wi-Fi SSID as well as the password configured by the user from Meross app...

7.4CVSS7.1AI score0.00151EPSS
Exploits0
RedhatCVE
RedhatCVEadded 2025/05/22 6:37 p.m.3 views

CVE-2021-35067

Meross MSG100 devices before 3.2.3 allow an attacker to replay the same data or similar data e.g., an attacker who sniffs a Close message can transmit an acceptable Open message...

8.1CVSS7AI score0.00219EPSS
Exploits1References1
OSV
OSVadded 2024/01/23 9:15 p.m.1 views

CVE-2023-46892

The radio frequency communication protocol being used by Meross MSH30Q 4.5.23 is vulnerable to replay attacks, allowing attackers to record and replay previously captured communication to execute unauthorized commands or actions e.g., thermostat's temperature...

8.8CVSS5.9AI score
Exploits0References1
NVD
NVDadded 2024/01/23 8:15 p.m.9 views

CVE-2023-46889

Meross MSH30Q 4.5.23 is vulnerable to Cleartext Transmission of Sensitive Information. During the device setup phase, the MSH30Q creates an unprotected Wi-Fi access point. In this phase, MSH30Q needs to connect to the Internet through a Wi-Fi router. This is why MSH30Q asks for the Wi-Fi network...

5.7CVSS5.6AI score0.00043EPSS
Exploits0References1
OSV
OSVadded 2024/01/23 8:15 p.m.0 views

CVE-2023-46889

Meross MSH30Q 4.5.23 is vulnerable to Cleartext Transmission of Sensitive Information. During the device setup phase, the MSH30Q creates an unprotected Wi-Fi access point. In this phase, MSH30Q needs to connect to the Internet through a Wi-Fi router. This is why MSH30Q asks for the Wi-Fi network...

5.7CVSS5.8AI score0.00043EPSS
Exploits0References1
Prion
Prionadded 2024/01/23 8:15 p.m.29 views

Code injection

Meross MSH30Q 4.5.23 is vulnerable to Cleartext Transmission of Sensitive Information. During the device setup phase, the MSH30Q creates an unprotected Wi-Fi access point. In this phase, MSH30Q needs to connect to the Internet through a Wi-Fi router. This is why MSH30Q asks for the Wi-Fi network...

2.9CVSS7.2AI score0.00043EPSS
Exploits0References1Affected Software1
CNNVD
CNNVDadded 2024/01/23 12:0 a.m.1 views

Meross MSH30Q Security Vulnerability

The Meross MSH30Q is a smart Wi-Fi hub from Meross. A security vulnerability exists in the Meross MSH30Q version 4.5.23, which stems from susceptibility to the transmission of sensitive information in clear text...

5.7CVSS6.5AI score0.00043EPSS
Exploits0References2
Cvelist
Cvelistadded 2024/01/23 12:0 a.m.11 views

CVE-2023-46892

The radio frequency communication protocol being used by Meross MSH30Q 4.5.23 is vulnerable to replay attacks, allowing attackers to record and replay previously captured communication to execute unauthorized commands or actions e.g., thermostat's temperature...

9.1AI score0.00042EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2024/01/23 12:0 a.m.16 views

CVE-2023-46889

Meross MSH30Q 4.5.23 is vulnerable to Cleartext Transmission of Sensitive Information. During the device setup phase, the MSH30Q creates an unprotected Wi-Fi access point. In this phase, MSH30Q needs to connect to the Internet through a Wi-Fi router. This is why MSH30Q asks for the Wi-Fi network...

7AI score0.00043EPSS
Exploits0References1
CVE
CVEadded 2024/01/23 12:0 a.m.24 views

CVE-2023-46889

Meross MSH30Q (4.5.23) is vulnerable to Cleartext Transmission of Sensitive Information. During device setup, the device creates an unprotected Wi‑Fi Access Point to connect to the Internet, causing the Wi‑Fi SSID and password to be transmitted between the MSH30Q and the mobile app over the Wi‑Fi...

5.7CVSS5.6AI score0.00043EPSS
Exploits0References1Affected Software1
CNNVD
CNNVDadded 2024/01/23 12:0 a.m.1 views

Meross MSH30Q Security Vulnerability

The Meross MSH30Q is a smart Wi-Fi hub from Meross. A security vulnerability exists in the Meross MSH30Q version 4.5.23, which stems from vulnerability to replay attacks, where an attacker can record and replay previously captured communications to perform unauthorized commands or actions...

8.8CVSS6.9AI score0.00042EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2024/01/23 12:0 a.m.2 views

PT-2024-13386 · Meross · Meross Msh30Q

Name of the Vulnerable Software and Affected Versions: Meross MSH30Q version 4.5.23 Description: The issue concerns the transmission of sensitive information in cleartext during the device setup phase. When setting up the device, it creates an unprotected Wi-Fi access point and requires the user ...

5.7CVSS5.5AI score0.00043EPSS
Exploits0References3
Positive Technologies
Positive Technologiesadded 2024/01/23 12:0 a.m.3 views

PT-2024-13387 · Meross · Meross Msh30Q

Name of the Vulnerable Software and Affected Versions: Meross MSH30Q version 4.5.23 Description: The radio frequency communication protocol used by the device is susceptible to replay attacks. This allows attackers to record and replay previously captured communication, enabling them to execute...

8.8CVSS8.8AI score0.00042EPSS
Exploits0References3
CVE
CVEadded 2024/01/23 12:0 a.m.38 views

CVE-2023-46892

CVE-2023-46892 concerns the Meross MSH30Q (version 4.5.23) RF communication protocol. The issue is a replay attack vulnerability that allows recording and replay of previously captured RF commands to trigger unauthorized actions (e.g., thermostat temperature). Affected component is the device’s R...

8.8CVSS8.8AI score0.00042EPSS
Exploits0References1Affected Software1
Cvelist
Cvelistadded 2024/01/23 12:0 a.m.14 views

CVE-2023-46889

Meross MSH30Q 4.5.23 is vulnerable to Cleartext Transmission of Sensitive Information. During the device setup phase, the MSH30Q creates an unprotected Wi-Fi access point. In this phase, MSH30Q needs to connect to the Internet through a Wi-Fi router. This is why MSH30Q asks for the Wi-Fi network...

5.9AI score0.00043EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2024/01/23 12:0 a.m.7 views

CVE-2023-46892

The radio frequency communication protocol being used by Meross MSH30Q 4.5.23 is vulnerable to replay attacks, allowing attackers to record and replay previously captured communication to execute unauthorized commands or actions e.g., thermostat's temperature...

7.4AI score0.00042EPSS
Exploits0References1
Rows per page
Query Builder