Vendor
Nespresso
Products
1
CVEs
2
Across products
2
Status
Private
Products
1- 2 CVEs
Recent CVEs
2| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2018-20960 | Hig | 0.53 | 8.1 | 0.01 | Aug 8, 2019 | Nespresso Prodigio devices lack Bluetooth connection security. | ||
| CVE-2014-5899 | 0.00 | — | 0.00 | Sep 15, 2014 | The Nespresso (aka com.nespresso.activities) application 2.4.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. |
- risk 0.53cvss 8.1epss 0.01
Nespresso Prodigio devices lack Bluetooth connection security.
- CVE-2014-5899Sep 15, 2014risk 0.00cvss —epss 0.00
The Nespresso (aka com.nespresso.activities) application 2.4.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.