Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
According to the researcher: "The TLS connections are encrypted against tampering or eavesdropping. However, the application does not validate the server certificate properly while initializing the TLS connection. This allows for a network attacker to intercept the connection and read the data. The attacker could the either send the client a malicious response, or forward the (possibly modified) data to the real server."
CVSS Information
N/A
Vulnerability Type
特权管理不恰当
Vulnerability Title
Google Nest 安全漏洞
Vulnerability Description
Google Nest是美国谷歌(Google)公司的一款智能家居产品。 Google Nest存在安全漏洞,该漏洞源于应用程序在初始化TLS连接时没有正确验证服务器证书,允许网络攻击者拦截连接并读取数据。
CVSS Information
N/A
Vulnerability Type
N/A