Lucene search
K

5 matches found

OSV
OSV
added 2021/09/28 4:15 p.m.6 views

CVE-2021-41104

ESPHome is a system to control the ESP8266/ESP32. Anyone with webserver enabled and HTTP basic auth configured on version 2021.9.1 or older is vulnerable to an issue in which webserver allows over-the-air OTA updates without checking user defined basic auth username & password. This issue is...

7.5CVSS5.6AI score0.01175EPSS
Exploits0References3
NVD
NVD
added 2021/09/28 4:15 p.m.26 views

CVE-2021-41104

ESPHome is a system to control the ESP8266/ESP32. Anyone with webserver enabled and HTTP basic auth configured on version 2021.9.1 or older is vulnerable to an issue in which webserver allows over-the-air OTA updates without checking user defined basic auth username & password. This issue is...

7.5CVSS0.01175EPSS
Exploits0References3
Prion
Prion
added 2021/09/28 4:15 p.m.16 views

Default credentials

ESPHome is a system to control the ESP8266/ESP32. Anyone with webserver enabled and HTTP basic auth configured on version 2021.9.1 or older is vulnerable to an issue in which webserver allows over-the-air OTA updates without checking user defined basic auth username & password. This issue is...

4.3CVSS7.3AI score0.01175EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2021/09/28 3:15 p.m.29 views

CVE-2021-41104 web_server allows OTA update without checking user defined basic auth username & password

ESPHome is a system to control the ESP8266/ESP32. Anyone with webserver enabled and HTTP basic auth configured on version 2021.9.1 or older is vulnerable to an issue in which webserver allows over-the-air OTA updates without checking user defined basic auth username & password. This issue is...

7.5CVSS7.6AI score0.01175EPSS
Exploits0References3
CNNVD
CNNVD
added 2021/09/28 12:0 a.m.6 views

Esphome 访问控制错误漏洞

Esphome is a system to configure and manage smart hardware. It is used to control Esp8266/Esp32 hardware to realize home automation control. An Access Control Error vulnerability exists in ESPHome version 2021.9.1 and prior versions, which originates from a user being vulnerable to an issue where...

7.5CVSS7.3AI score0.01175EPSS
Exploits0References4
Rows per page
Query Builder