Unrated severityNVD Advisory· Published Apr 2, 2021· Updated Aug 3, 2024
CVE-2021-30126
CVE-2021-30126
Description
Lightmeter ControlCenter 1.1.0 through 1.5.x before 1.5.1 allows anyone who knows the URL of a publicly available Lightmeter instance to access application settings, possibly including an SMTP password and a Slack access token, via a settings HTTP query.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Lightmeter/ControlCenterdescription
- Range: >=1.1.0, <1.5.1
Patches
Vulnerability mechanics
References
1- lightmeter.io/lightmeter-1-5-1-important-security-fixes/mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.