Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
TrendMakers Sight Bulb Pro Use of a Broken or Risky Cryptographic Algorithm
Vulnerability Description
During the initial setup of the device the user connects to an access point broadcast by the Sight Bulb Pro. During the negotiation, AES Encryption keys are passed in cleartext. If captured, an attacker may be able to decrypt communications between the management app and the Sight Bulb Pro which may include sensitive information such as network credentials.
CVSS Information
CVSS:3.1/AV:A/AC:L/PR:H/UI:R/S:C/C:H/I:H/A:N
Vulnerability Type
使用已被攻破或存在风险的密码学算法
Vulnerability Title
Trend Makers Sight Bulb Pro 加密问题漏洞
Vulnerability Description
Trend Makers Sight Bulb Pro是美国Trend Makers公司的一款摄像头。 Trend Makers Sight Bulb Pro存在加密问题漏洞,该漏洞源于初始设置时AES密钥明文传输,可能导致通信解密和敏感信息泄露。
CVSS Information
N/A
Vulnerability Type
N/A