Vivint Sky Control Panel Unauthenticated Access

2016.03.03
Credit: Jeremy Scott
Risk: High
Local: No
Remote: Yes
CWE: N/A


CVSS Base Score: 10/10
Impact Subscore: 10/10
Exploitability Subscore: 10/10
Exploit range: Remote
Attack complexity: Low
Authentication: No required
Confidentiality impact: Complete
Integrity impact: Complete
Availability impact: Complete

Vivint Sky Control Panel Unauthenticated Access Vulnerability Solutionary ID: SERT-VDN-1017 Risk Rating: High CVE ID: CVE-2014-8362 Product: Vivint Sky Control Panel Application Vendor: Vivint Vendor URL: http://www.vivint.com/en/ Date discovered: 09/25/2014 Discovered by: Jeremy Scott and Solutionary Security Engineering Research Team (SERT) Vendor notification date: 10/17/2014 Vendor response date: No Response Vendor acknowledgment date: No Response Public disclosure date: 09/22/2015 Type of vulnerability: Unauthenticated Administrative Access Exploit Vectors: Local and Remote Vulnerability Description: Vivint Sky Control Panel contains a flaw allowing unauthenticated access through a Web-enabled interface (default port 8090) to the Vivint Sky application. Unauthenticated access allows modifications to security settings including the capability to enable and disable the alarm. Tested on: Vivint Sky Control Panel v1.1.1.9926 Affected software versions: Vivint Sky Control Panel v1.1.1.9926 Impact: Successful access to the control panel without requiring authentication allows an attacker to modify the alarm settings to aid in the unauthorized access of the physical premises, affect the integrity of the alarm system and create false alarms. Fixed in: Current version Remediation guidelines: The vendor has implemented authentication to require authentication to the Web interface. Please contact the vendor and request a firmware update to mitigate the vulnerability, if identified.


Vote for this issue:
50%
50%


 

Thanks for you vote!


 

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.


(*) - required fields.  
{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1
{{ x.comment }}

Copyright 2024, cxsecurity.com

 

Back to Top