32 matches found
EUVD-2016-6011
Malware in sbrugna...
CVE-2024-48544
Incorrect access control in the firmware update and download processes of Sylvania Smart Home v3.0.3 allows attackers to access sensitive information by analyzing the code and data within the APK file...
CVE-2024-48544
Incorrect access control in the firmware update and download processes of Sylvania Smart Home v3.0.3 allows attackers to access sensitive information by analyzing the code and data within the APK file...
PT-2024-33142 · Sylvania · Sylvania Smart Home
Name of the Vulnerable Software and Affected Versions: Sylvania Smart Home version 3.0.3 Description: The issue is related to incorrect access control in the firmware update and download processes, allowing attackers to access sensitive information by analyzing the code and data within the APK...
CVE-2024-48544
Incorrect access control in the firmware update and download processes of Sylvania Smart Home v3.0.3 allows attackers to access sensitive information by analyzing the code and data within the APK file...
CVE-2024-48544
Incorrect access control in the firmware update and download processes of Sylvania Smart Home v3.0.3 allows attackers to access sensitive information by analyzing the code and data within the APK file...
Sylvania Smart Home 安全漏洞
Sylvania Smart Home is a smart home control software from Sylvania. A security vulnerability exists in Sylvania Smart Home version v3.0.3, which stems from incorrect access control during firmware updates and downloads, and could allow an attacker to access sensitive information by analyzing code...
CVE-2024-48544
CVE-2024-48544 affects Sylvania Smart Home v3.0.3. The root cause is incorrect access control in the firmware update and download processes, enabling an attacker to access sensitive information by analyzing code/data inside the APK. CVSS v3.1 metrics indicate Local attack vector, No privileges re...
sylvania-oh.findstoragefast.com Cross Site Scripting vulnerability OBB-3853528
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
CVE-2016-5055
OSRAM SYLVANIA Osram Lightify Pro before 2016-07-26 has XSS in the username field and Wireless Client Mode configuration page...
CVE-2016-5051
OSRAM SYLVANIA Osram Lightify Home before 2016-07-26 stores a PSK in cleartext under /private/var/mobile/Containers/Data/Application...
CVE-2016-5053
OSRAM SYLVANIA Osram Lightify Home before 2016-07-26 allows remote attackers to execute arbitrary commands via TCP port 4000...
CVE-2016-5054
OSRAM SYLVANIA Osram Lightify Home through 2016-07-26 allows Zigbee replay...
CVE-2016-5056
OSRAM SYLVANIA Osram Lightify Pro before 2016-07-26 uses only 8 hex digits for a PSK...
Design/Logic Flaw
OSRAM SYLVANIA Osram Lightify Home before 2016-07-26 allows remote attackers to execute arbitrary commands via TCP port 4000...
Code injection
OSRAM SYLVANIA Osram Lightify Pro before 2016-07-26 has XSS in the username field and Wireless Client Mode configuration page...
Buffer overflow
OSRAM SYLVANIA Osram Lightify Pro through 2016-07-26 does not use SSL pinning...
Buffer overflow
OSRAM SYLVANIA Osram Lightify Pro before 2016-07-26 uses only 8 hex digits for a PSK...
Buffer overflow
OSRAM SYLVANIA Osram Lightify Home through 2016-07-26 does not use SSL pinning...
Design/Logic Flaw
OSRAM SYLVANIA Osram Lightify Home through 2016-07-26 allows Zigbee replay...