CVE-2013-6951

Name of the Vulnerable Software and Affected Versions Belkin WeMo Home Automation firmware versions prior to 3949

Description The issue allows man-in-the-middle attackers to spoof SSL servers via an arbitrary X.509 certificate, as the firmware does not maintain a set of Certification Authority public keys.

Recommendations For versions prior to 3949, update the firmware to version 3949 or later to resolve the issue.