VYPR
High severity7.5NVD Advisory· Published Feb 21, 2018· Updated Jun 17, 2026

CVE-2018-7276

CVE-2018-7276

Description

An issue was discovered on Lutron Quantum BACnet Integration 2.0 (firmware 3.2.243) devices. Remote attackers can obtain potentially sensitive information via a /DbXmlInfo.xml request, as demonstrated by the Latitude/Longitude of the device.

Affected products

1

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.