CVE-2024-7206 | eWeLink Zigbee Bridge Pro up to 2.0.0 TLS certificate validation

Inserito da Angelo Barbosa | Ott 8, 2024 | CVE

A vulnerability was found in eWeLink Zigbee Bridge Pro up to 2.0.0. It has been rated as critical. Affected by this issue is some unknown functionality of the component TLS. The manipulation leads to improper certificate validation.

This vulnerability is handled as CVE-2024-7206. It is possible to launch the attack on the local host. There is no exploit available.

CVE-2024-7206 | eWeLink Zigbee Bridge Pro up to 2.0.0 TLS certificate validation

Post correlati

CVE-2024-0491 | Huaxia ERP up to 3.1 UserController.java password recovery

CVE-2024-2090 | Remote Content Shortcode Plugin up to 1.5 on WordPress server-side request forgery

CVE-2024-41708 | AdaCore ada_web_services 20.0 src/core/aws-utils.adb Random_String random values

CVE-2024-0194 | CodeAstro Internet Banking System up to 1.0 Profile Picture pages_account.php unrestricted upload