VYPR
Unrated severityNVD Advisory· Published Aug 20, 2019· Updated Aug 4, 2024

CVE-2019-5035

CVE-2019-5035

Description

An exploitable information disclosure vulnerability exists in the Weave PASE pairing functionality of the Nest Cam IQ Indoor, version 4620002. A set of specially crafted weave packets can brute force a pairing code, resulting in greater Weave access and potentially full device control. An attacker can send specially crafted packets to trigger this vulnerability.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Nest/Nest Cam IQ Indoordescription
  • Nestjs/Nestllm-fuzzy
    Range: = 4620002

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.