CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

7 matches found

RedhatCVE•added 2025/05/23 12:2 a.m.•5 views

CVE-2022-43704

The Sinilink XY-WFT1 WiFi Remote Thermostat, running firmware 1.3.6, allows an attacker to bypass the intended requirement to communicate using MQTT. It is possible to replay Sinilink aka SINILINK521 protocol udp/1024 commands interfacing directly with the target device. This, in turn, allows for...

5.9CVSS7.3AI score0.01629EPSS

Exploits2References1

NVD•added 2023/01/20 5:15 p.m.•8 views

CVE-2022-43704

5.9CVSS5.9AI score0.01629EPSS

Exploits2References1

OSV•added 2023/01/20 5:15 p.m.•2 views

CVE-2022-43704

5.9CVSS5.8AI score0.01629EPSS

Exploits2References1

Prion•added 2023/01/20 5:15 p.m.•17 views

Design/Logic Flaw

2.6CVSS5.9AI score0.01629EPSS

Exploits2References1Affected Software1

CVE•added 2023/01/20 12:0 a.m.•63 views

CVE-2022-43704

CVE-2022-43704 affects Sinilink XY-WFT1 WiFi Remote Thermostat (firmware 1.3.6). The issue allows an attacker to bypass the requirement to use MQTT and replay SINILINK521 protocol commands over UDP/1024, interfacing directly with the device to control the onboard relay without mobile-app authenti...

5.9CVSS5.9AI score0.01629EPSS

Exploits2References1Affected Software1

CNNVD•added 2023/01/20 12:0 a.m.•1 views

Sinilink XY-WFT1 WiFi Remote Thermostat 安全漏洞

Sinilink XY-WFT1 WiFi Remote Thermostat is a remote thermostat from Sinilink. A security vulnerability exists in the Sinilink XY-WFT1 WiFi Remote Thermostat version 1.3.6, which stems from the lack of need to authenticate via a mobile application, allowing an attacker to bypass the expected...

5.9CVSS6AI score0.01629EPSS

Exploits2References2

Cvelist•added 2023/01/20 12:0 a.m.•24 views

CVE-2022-43704

6.1AI score0.01629EPSS

Exploits2References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by