Jannik Zimmer

Name of the Vulnerable Software and Affected Versions: Sunny Portal (affected versions not specified) Description: A low-privileged remote attacker can obtain the username of another registered user by entering that user's email address. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: An unauthenticated remote attacker could use a demo account of the portal to hijack devices that were created in that account by mistake. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.