47 matches found
CVE-2026-33268
Nanoleaf Lines 12.3.2 does not authenticate firmware file uploads. A remote, unauthenticated attacker can upload firmware files on the device and consume storage resources. Fixed in 12.3.6...
CVE-2026-33268
Nanoleaf Lines 12.3.2 does not authenticate firmware file uploads. A remote, unauthenticated attacker can upload firmware files on the device and consume storage resources. Fixed in 12.3.6...
CVE-2026-33268 Nanoleaf Lines unauthenticated firmware file store
Nanoleaf Lines 12.3.2 does not authenticate firmware file uploads. A remote, unauthenticated attacker can upload firmware files on the device and consume storage resources. Fixed in 12.3.6...
CVE-2026-33268
Nanoleaf Lines 12.3.2 does not authenticate firmware file uploads. A remote, unauthenticated attacker can upload firmware files on the device and consume storage resources. Fixed in 12.3.6...
CVE-2026-33268
Nanoleaf Lines (firmware 12.3.2) is affected by CVE-2026-33268 due to unauthenticated firmware uploads, allowing a remote attacker to upload firmware and consume storage resources. The issue is network-accessible with no required privileges and could impact availability and, to a lesser extent, i...
CVE-2026-33268 Nanoleaf Lines unauthenticated firmware file store
Nanoleaf Lines 12.3.2 does not authenticate firmware file uploads. A remote, unauthenticated attacker can upload firmware files on the device and consume storage resources. Fixed in 12.3.6...
PT-2026-27782
Name of the Vulnerable Software and Affected Versions Nanoleaf Lines versions 12.3.2 through 12.3.5 Description Nanoleaf Lines does not properly authenticate firmware file uploads. This allows a remote, unauthenticated attacker to upload firmware files to the device, potentially consuming storage...
Nanoleaf Lines 安全漏洞
Nanoleaf Lines is a smart lighting device developed by Nanoleaf that allows for customizable lighting patterns and ambient effects. Version 12.3.2 of Nanoleaf Lines contains a security vulnerability; this vulnerability stems from unverified firmware file uploads, which may lead to exhaustion of...
Nanoleaf Lines unauthenticated firmware file store
RISK EVALUATION Nanoleaf Lines 12.3.2 does not authenticate firmware file uploads. A remote, unauthenticated attacker can upload firmware files on the device and consume storage resources. 2. RECOMMENDED PRACTICES Update to 12.3.6. 3. DESCRIPTION Nanoleaf Lines 12.3.2 does not authenticate...
EUVD-2022-50516
Malicious code in bioql PyPI...
EUVD-2022-49444
Malicious code in bioql PyPI...
EUVD-2023-50218
Malicious code in bioql PyPI...
CVE-2023-45955
An issue discovered in Nanoleaf Light strip v3.5.10 allows attackers to cause a denial of service via crafted write binding attribute commands...
CVE-2022-46640
Nanoleaf Desktop App before v1.3.1 was discovered to contain a command injection vulnerability which is exploited via a crafted HTTP request...
CVE-2022-47758
Nanoleaf firmware v7.1.1 and below is missing TLS verification, allowing attackers to execute arbitrary code via a DNS hijacking attack...
CVE-2023-45955
An issue discovered in Nanoleaf Light strip v3.5.10 allows attackers to cause a denial of service via crafted write binding attribute commands...
CVE-2023-45955
An issue discovered in Nanoleaf Light strip v3.5.10 allows attackers to cause a denial of service via crafted write binding attribute commands...
CVE-2023-45955
An issue discovered in Nanoleaf Light strip v3.5.10 allows attackers to cause a denial of service via crafted write binding attribute commands...
Command injection
An issue discovered in Nanoleaf Light strip v3.5.10 allows attackers to cause a denial of service via crafted write binding attribute commands...
CVE-2023-45955
An issue discovered in Nanoleaf Light strip v3.5.10 allows attackers to cause a denial of service via crafted write binding attribute commands...