The vulnerability in the Vivint Sky Control Panel web application lies in the lack of authentication for critical functions. This allows a malicious individual to activate or deactivate the security system and alter other security settings.

The vulnerability of the Vivint Sky Control Panel web application is related to the lack of authentication for critical functions. Exploiting this vulnerability allows a malicious actor to enable and disable the alarm system and modify other security settings via the web interface the default por...