Sam Granger

Name of the Vulnerable Software and Affected Versions: Green Electronics RainMachine Mini-8 (2nd generation) Description: The issue concerns the use of the administrator's password hash instead of the password itself for authentication in the time-based one-time-password (TOTP) function. This allows an attacker who obtains the hash value from the rainmachine-settings.sqlite file to exploit the system for remote and local access. Recommendations: For Green Electronics RainMachine Mini-8 (2nd generation), consider restricting access to the rainmachine-settings.sqlite file to prevent attackers from obtaining the password hash until a fix is available. As a temporary workaround, changing the administrator's password regularly can help minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Green Electronics RainMachine Mini-8 (2nd generation) Description: The issue concerns the 'Weather Service' feature, which allows an attacker to inject arbitrary Python code. This is possible via the 'Add new weather data source' upload function. Recommendations: For the Green Electronics RainMachine Mini-8 (2nd generation), consider disabling the 'Add new weather data source' upload function in the 'Weather Service' feature until a patch is available. Restrict access to this feature to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Green Electronics RainMachine Mini-8 (2nd Generation) and Touch HD 12 (affected versions not specified) **Description** A persistent Cross Site Scripting (XSS) issue in the web application allows an attacker to inject arbitrary JavaScript via the REST API. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Green Electronics RainMachine Mini-8 (2nd Generation) and Touch HD 12 (affected versions not specified) **Description** A Cross Site Request Forgery (CSRF) issue in the web application of the affected devices allows an attacker to control the device via the REST API. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Green Electronics RainMachine Mini-8 (2nd Generation) and Touch HD 12 (affected versions not specified) **Description** An authentication bypass issue exists in the web application, allowing an unauthenticated attacker to perform actions that should require authentication. This is achieved by manipulating the `Host` header in HTTP requests with a `127.0.0.1:port` value, enabling the attacker to retrieve sensitive information such as credentials. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Green Electronics RainMachine Mini-8 (2nd Generation) and Touch HD 12 (affected versions not specified) **Description** A missing X-Frame-Options header in the web application could be used by a remote attacker for clickjacking, as demonstrated by triggering an API page request. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.