PT-2021-15183 · Spacelynk+1 · Spacelynk+1

Published

2021-05-26

Updated

2021-06-04

CVE-2021-22734

CVSS v3.1

7.2

High

Vector

AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions homeLYnk (Wiser For KNX) versions prior to V2.60 spaceLYnk versions prior to V2.60

Description The issue is related to an Improper Verification of Cryptographic Signature, which could lead to remote code execution when an attacker loads unauthorized code.

Recommendations For homeLYnk (Wiser For KNX) versions prior to V2.60, update to a version that includes the fix for this issue. For spaceLYnk versions prior to V2.60, update to a version that includes the fix for this issue. As a temporary workaround, consider restricting access to the system to minimize the risk of exploitation.

Fix

Improper Verification of Cryptographic Signature

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-347

Related Identifiers

CVE-2021-22734

Affected Products

Homelynk

Spacelynk

PT-2021-15183 · Spacelynk+1 · Spacelynk+1

CVE-2021-22734

Weakness Enumeration

Related Identifiers

Affected Products

References · 4