RSS   Vulnerabilities for 'Hue bridge bsb002 firmware'   RSS

2017-09-30
 
CVE-2017-14797

CWE-326
 

 
Lack of Transport Encryption in the public API in Philips Hue Bridge BSB002 SW 1707040932 allows remote attackers to read API keys (and consequently bypass the pushlink protection mechanism, and obtain complete control of the connected accessories) by leveraging the ability to sniff HTTP traffic on the local intranet network.

 

 >>> Vendor: Philips 15 Products
Xper information management physiomonitoring 5
Xper information management vascular monitoring 5
Xperconnect
Xper flex cardio
In.sight b120\37
Hue bridge bsb002 firmware
Intellispace cardiovascular
Xcelera
Intellispace portal
Alice 6 firmware
Dosewise
brilliance ct big bore firmware
Brilliance firmware 64
Brilliance ict firmware
Brilliance ict sp firmware


Copyright 2018, cxsecurity.com

 

Back to Top