CVE-2018-25396— Heatmiser Wifi Thermostat 1.7 Credential Disclosure via networkSetup.htm

CVSS 7.5 · High EPSS 0.31% · P23 Updated May 30, 2026

Possible ATT&CK Techniques 3AI

T1005 · Data from Local System T1078 · Valid Accounts T1552 · Unsecured Credentials

Affected Version Matrix 1

Vendor	Product	Version Range	Status
Heatmiser	Heatmiser Wifi Thermostat	`1.7`	affected

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2018-25396

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

Heatmiser Wifi Thermostat 1.7 Credential Disclosure via networkSetup.htm

Source: NVD (National Vulnerability Database)

Vulnerability Description

Heatmiser Wifi Thermostat 1.7 contains a credential disclosure vulnerability that allows unauthenticated attackers to retrieve administrative credentials by accessing the networkSetup.htm page. Attackers can request the networkSetup.htm endpoint and extract plaintext username and password values from HTML form fields to gain administrative access to the thermostat.

Source: NVD (National Vulnerability Database)

CVSS Information

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Source: NVD (National Vulnerability Database)

Vulnerability Type

明文存储口令

Source: NVD (National Vulnerability Database)

Vulnerability Title

Heatmiser Wifi Thermostat 安全漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Heatmiser Wifi Thermostat是英国Heatmiser公司的一款支持无线连接与远程控制的智能温控设备。 Heatmiser Wifi Thermostat 1.7版本存在安全漏洞，该漏洞源于访问networkSetup.htm页面，可能导致未经身份验证的攻击者检索明文管理凭据。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
Heatmiser	Heatmiser Wifi Thermostat	1.7	-

II. Public POCs for CVE-2018-25396

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2018-25396

请登录查看更多情报信息。

Vendor Advisories for CVE-2018-25396 (1)

🔗 Heatmiser Wifi Thermostat 1.7 Credential Disclosure via networkSetup.htm | Advisories | VulnCheckthird-party-advisory

Exploits & Public PoCs for CVE-2018-25396 (1)

🔗 Heatmiser Wifi Thermostat 1.7 - Credential Disclosure - Hardware webapps Exploit Read full article exploit

https://nvd.nist.gov/vuln/detail/CVE-2018-25396

IV. Related Vulnerabilities

Same product: Heatmiser Wifi Thermostat

CVE-2019-25708
Heatmiser Wifi Thermostat 1.7 Cross-Site Request Forgery

Same vendor: Heatmiser

Same weakness: CWE-256

V. Comments for CVE-2018-25396

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2018-25396— Heatmiser Wifi Thermostat 1.7 Credential Disclosure via networkSetup.htm

Possible ATT&CK Techniques 3AI

Affected Version Matrix 1

I. Basic Information for CVE-2018-25396

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2018-25396

III. Intelligence Information for CVE-2018-25396

Vendor Advisories for CVE-2018-25396 (1)

Exploits & Public PoCs for CVE-2018-25396 (1)

IV. Related Vulnerabilities

V. Comments for CVE-2018-25396

Leave a comment