Lightify Home
CVEs (4)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2016-5053 | Cri | 0.64 | 9.8 | 0.03 | Apr 10, 2017 | OSRAM SYLVANIA Osram Lightify Home before 2016-07-26 allows remote attackers to execute arbitrary commands via TCP port 4000. | ||
| CVE-2016-5054 | Hig | 0.49 | 7.5 | 0.01 | Apr 10, 2017 | OSRAM SYLVANIA Osram Lightify Home through 2016-07-26 allows Zigbee replay. | ||
| CVE-2016-5052 | Hig | 0.49 | 7.5 | 0.01 | Apr 10, 2017 | OSRAM SYLVANIA Osram Lightify Home through 2016-07-26 does not use SSL pinning. | ||
| CVE-2016-5051 | Hig | 0.49 | 7.5 | 0.01 | Apr 10, 2017 | OSRAM SYLVANIA Osram Lightify Home before 2016-07-26 stores a PSK in cleartext under /private/var/mobile/Containers/Data/Application. |
- risk 0.64cvss 9.8epss 0.03
OSRAM SYLVANIA Osram Lightify Home before 2016-07-26 allows remote attackers to execute arbitrary commands via TCP port 4000.
- risk 0.49cvss 7.5epss 0.01
OSRAM SYLVANIA Osram Lightify Home through 2016-07-26 allows Zigbee replay.
- risk 0.49cvss 7.5epss 0.01
OSRAM SYLVANIA Osram Lightify Home through 2016-07-26 does not use SSL pinning.
- risk 0.49cvss 7.5epss 0.01
OSRAM SYLVANIA Osram Lightify Home before 2016-07-26 stores a PSK in cleartext under /private/var/mobile/Containers/Data/Application.