CVE

CVE-2018-15477

CVE-2018-15477

myStrom WiFi Switch V1 devices before 2.66 did not sanitize a parameter received from the cloud that was used in an OS command. Malicious servers were able to run operating system commands on the device.

Source: CVE-2018-15477

Exit mobile version