Medium severity6.5NVD Advisory· Published Oct 7, 2024· Updated Jun 17, 2026
CVE-2024-46040
CVE-2024-46040
Description
IoT Haat Smart Plug IH-IN-16A-S IH-IN-16A-S v5.16.1 suffers from Insufficient Session Expiration. The lack of validation of the authentication token at the IoT Haat during the Access Point Pairing mode leads the attacker to replay the Wi-Fi packets and forcefully turn off the access point after the authentication token has expired.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: =v5.16.1
- Range: =v5.16.1
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.