Описание
Unauthenticated users on an adjacent network with the Sight Bulb Pro can run shell commands as root through a vulnerable proprietary TCP protocol available on Port 16668. This vulnerability allows an attacker to run arbitrary commands on the Sight Bulb Pro by passing a well formed JSON string.
EPSS
Процентиль: 18%
0.00057
Низкий
5.4 Medium
CVSS3
Дефекты
CWE-77
Связанные уязвимости
CVSS3: 5.4
github
8 месяцев назад
Unauthenticated users on an adjacent network with the Sight Bulb Pro can run shell commands as root through a vulnerable proprietary TCP protocol available on Port 16668. This vulnerability allows an attacker to run arbitrary commands on the Sight Bulb Pro by passing a well formed JSON string.
EPSS
Процентиль: 18%
0.00057
Низкий
5.4 Medium
CVSS3
Дефекты
CWE-77