RSS   Vulnerabilities for 'Ilnkp2p'   RSS

2019-04-26
 
CVE-2019-11220

CWE-287
 

 
An authentication flaw in Shenzhen Yunni Technology iLnkP2P allows remote attackers to actively intercept user-to-device traffic in cleartext, including video streams and device credentials.

 
 
CVE-2019-11219

CWE-310
 

 
The algorithm used to generate device IDs (UIDs) for devices that utilize Shenzhen Yunni Technology iLnkP2P suffers from a predictability flaw that allows remote attackers to establish direct connections to arbitrary devices.

 


Copyright 2019, cxsecurity.com

 

Back to Top