Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Fibaro Home Center Unauthenticated access to shutdown, reboot and reboot to recovery mode
Vulnerability Description
In Fibaro Home Center 2 and Lite devices with firmware version 4.600 and older an internal management service is accessible on port 8000 and some API endpoints could be accessed without authentication to trigger a shutdown, a reboot or a reboot into recovery mode.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Vulnerability Type
关键功能的认证机制缺失
Vulnerability Title
FIBARO Home Center 2 访问控制错误漏洞
Vulnerability Description
FIBARO Home Center 2是波兰FIBARO公司的一个应用系统。一个系统集成系统。 Fibaro Home Center 2存在安全漏洞,该漏洞允许可以在端口8000上访问内部管理服务,可以访问一些API端点,而无需身份验证,从而触发关机、重启或重启到恢复模式。
CVSS Information
N/A
Vulnerability Type
N/A