High severity7.5NVD Advisory· Published Apr 14, 2020· Updated Jun 17, 2026
CVE-2018-6402
CVE-2018-6402
Description
Ecobee Ecobee4 4.2.0.171 devices can be forced to deauthenticate and connect to an unencrypted Wi-Fi network with the same SSID, even if the device settings specify use of encryption such as WPA2, as long as the competing network has a stronger signal. An attacker must be able to set up a nearby SSID, similar to an "Evil Twin" attack.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Ecobee/Ecobee4description
Patches
Vulnerability mechanics
References
1- garrettmiller.github.io/meross-mss110-vuln/nvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.