Vendor
Osram
Products
2
CVEs
7
Across products
7
Status
Private
Products
2- 4 CVEs
- 3 CVEs
Recent CVEs
7| CVE | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2016-5053 | Cri | 0.64 | 9.8 | 0.02 | Apr 10, 2017 | OSRAM SYLVANIA Osram Lightify Home before 2016-07-26 allows remote attackers to execute arbitrary commands via TCP port 4000. | |
| CVE-2016-5057 | Hig | 0.49 | 7.5 | 0.00 | Apr 10, 2017 | OSRAM SYLVANIA Osram Lightify Pro through 2016-07-26 does not use SSL pinning. | |
| CVE-2016-5056 | Hig | 0.49 | 7.5 | 0.00 | Apr 10, 2017 | OSRAM SYLVANIA Osram Lightify Pro before 2016-07-26 uses only 8 hex digits for a PSK. | |
| CVE-2016-5054 | Hig | 0.49 | 7.5 | 0.00 | Apr 10, 2017 | OSRAM SYLVANIA Osram Lightify Home through 2016-07-26 allows Zigbee replay. | |
| CVE-2016-5052 | Hig | 0.49 | 7.5 | 0.00 | Apr 10, 2017 | OSRAM SYLVANIA Osram Lightify Home through 2016-07-26 does not use SSL pinning. | |
| CVE-2016-5059 | Med | 0.42 | 6.5 | 0.00 | Apr 10, 2017 | OSRAM SYLVANIA Osram Lightify Pro before 2016-07-26 allows attackers to obtain sensitive information by reading screenshots under /private/var/mobile/Containers/Data/Application. | |
| CVE-2016-5055 | Med | 0.40 | 6.1 | 0.00 | Apr 10, 2017 | OSRAM SYLVANIA Osram Lightify Pro before 2016-07-26 has XSS in the username field and Wireless Client Mode configuration page. |