High severity7.4NVD Advisory· Published Nov 7, 2017· Updated May 13, 2026

CVE-2017-12094

Description

An exploitable vulnerability exists in the WiFi Channel parsing of Circle with Disney running firmware 2.0.1. A specially crafted SSID can cause the device to execute arbitrary sed commands. An attacker needs to setup an access point reachable by the device to trigger this vulnerability.

Affected products

Meetcircle/Circle With Disney Firmware
cpe:2.3:o:meetcircle:circle_with_disney_firmware:2.0.1:*:*:*:*:*:*:*
Circle Media/Circlev5
Range: firmware 2.0.1

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.talosintelligence.com/vulnerability_reports/TALOS-2017-0446nvdExploitTechnical DescriptionThird Party Advisory

News mentions

No linked articles in our index yet.

cvss	0.481
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000