Critical severity9.8NVD Advisory· Published Feb 22, 2018· Updated Jun 17, 2026
CVE-2017-5249
CVE-2017-5249
Description
In version 6.1.0.19 and prior of Wink Labs's Wink - Smart Home Android app, the OAuth token used by the app to authorize user access is not stored in an encrypted and secure manner.
Affected products
2- Range: <=6.1.0.19
- Wink Labs Inc/Wink - Smart Homev5Range: 6.1.0.19 and prior
Patches
Vulnerability mechanics
References
1- blog.rapid7.com/2017/09/22/multiple-vulnerabilities-in-wink-and-insteon-smart-home-systems/nvdThird Party Advisory
News mentions
0No linked articles in our index yet.