Lucene search
K

5 matches found

Vulnrichment
Vulnrichment
added 2025/07/24 8:53 p.m.1 views

CVE-2025-6260 Network Thermostat X-Series WiFi Thermostats Missing Authentication for Critical Function

The embedded web server on the thermostat listed version ranges contain a vulnerability that allows unauthenticated attackers, either on the local area network or from the Internet via a router with port forwarding set up, to gain direct access to the thermostat's embedded web server and reset us...

9.8CVSS7.4AI score0.00463EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/07/24 8:53 p.m.8 views

CVE-2025-6260 Network Thermostat X-Series WiFi Thermostats Missing Authentication for Critical Function

The embedded web server on the thermostat listed version ranges contain a vulnerability that allows unauthenticated attackers, either on the local area network or from the Internet via a router with port forwarding set up, to gain direct access to the thermostat's embedded web server and reset us...

9.8CVSS0.00463EPSS
Exploits0References1
CVE
CVE
added 2025/07/24 8:53 p.m.27 views

CVE-2025-6260

CVE-2025-6260 affects Network Thermostat X-Series WiFi Thermostats: the embedded web server can be reached unauthenticated over LAN or via Internet-exposed router, enabling an attacker to reset user credentials by manipulating the web interface. The exact vulnerable versions are not specified in ...

9.8CVSS6.5AI score0.00463EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/07/24 12:0 a.m.2 views

Network Thermostat X-Series WiFi thermostats 访问控制错误漏洞

Network Thermostat X-Series WiFi thermostats is a WiFi only thermostat from Network Thermostat, Inc. An access control error vulnerability exists in Network Thermostat X-Series WiFi thermostats that stems from an embedded web server that allows an unauthorized attacker to reset user credentials b...

9.8CVSS6.5AI score0.00463EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/07/24 12:0 a.m.4 views

PT-2025-30692 · Unknown · Network Thermostat X-Series

Name of the Vulnerable Software and Affected Versions: Network Thermostat X-Series WiFi Thermostats affected versions not specified Description: The embedded web server on the thermostat contains an issue that allows unauthenticated attackers, either on the local area network or from the Internet...

9.8CVSS6.3AI score0.00463EPSS
Exploits0References6
Rows per page
Query Builder