@alisowski/homebridge-samsungtv-control (=2.0.2), @dustinblackman/homebridge-samsungtv-control (>=2.0.1 <=2.0.2) +2 more potentially affected by CVE-2020-7786 via macfromip (=1.1.1)

macfromip NPM version =1.1.1 is affected by a known vulnerability. The following packages have a transitive dependency on macfromip and may be impacted: - @alisowski/homebridge-samsungtv-control =2.0.2 - @dustinblackman/homebridge-samsungtv-control =2.0.1, =2.0.0, =0.0.5, =0.2.7 Source cves:...

CVE-2021-21266 XXE vulnerability in OpenHAB

openHAB is a vendor and technology agnostic open source automation software for your home. In openHAB before versions 2.5.12 and 3.0.1 the XML external entity XXE attack allows attackers in the same network as the openHAB instance to retrieve internal information like the content of files from th...

@alisowski/homebridge-samsungtv-control (=2.0.2), @dustinblackman/homebridge-samsungtv-control (>=2.0.1 <=2.0.2) +2 more potentially affected by CVE-2020-7786 via macfromip (=1.1.1)

macfromip NPM version =1.1.1 is affected by a known vulnerability. The following packages have a transitive dependency on macfromip and may be impacted: - @alisowski/homebridge-samsungtv-control =2.0.2 - @dustinblackman/homebridge-samsungtv-control =2.0.1, =2.0.0, =0.0.5, =0.2.7 Source cves:...

homestar-samsung-smart-tv (>=0.0.1 <=0.0.19), node-red-contrib-samsungtv (>=0.1.0 <=0.1.1) potentially affected by unknown CVE via samsung-remote (=1.2.5)

samsung-remote NPM version =1.2.5 is affected by a known vulnerability. The following packages have a transitive dependency on samsung-remote and may be impacted: - homestar-samsung-smart-tv =0.0.1, =0.1.0, =0.1.1 Source cves: unknown CVE Source advisory: OSV:GHSA-XHJX-MFR6-9RR4...