VYPR
High severity8.1NVD Advisory· Published Apr 19, 2021· Updated Jun 17, 2026

CVE-2021-20992

CVE-2021-20992

Description

In Fibaro Home Center 2 and Lite devices in all versions provide a web based management interface over unencrypted HTTP protocol. Communication between the user and the device can be eavesdropped to hijack sessions, tokens and passwords.

Affected products

3

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.