PT-2019-13043 · Glue · Glue Smart Lock
Publicado
2019-10-15
·
Atualizado
2020-08-24
·
CVE-2019-12944
CVSS v3.1
7.5
Alta
| Vetor | AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N |
Name of the Vulnerable Software and Affected Versions
Glue Smart Lock version 2.7.8
Description
The issue arises when the network connection is unavailable, and the device fails to properly block guest access in certain situations.
Recommendations
For Glue Smart Lock version 2.7.8, consider restricting guest access manually until a patch is available to properly handle network connection unavailability.
Exploit
Correção
Missing Authorization
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Glue Smart Lock