Skip to main content

Wifi Switch Firmware

5 CVEs product

Monthly

CVE-2018-15480 HIGH This Week

An issue was discovered in myStrom WiFi Switch V1 before 2.66, WiFi Switch V2 before 3.80, WiFi Switch EU before 3.80, WiFi Bulb before 2.58, WiFi LED Strip before 3.80, WiFi Button before 2.73, and. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Wifi Switch Firmware Wifi Button Plus Firmware Wifi Button Firmware Wifi Switch Eu Firmware +2
NVD
CVSS 3.0
8.8
EPSS
1.0%
CVE-2018-15479 MEDIUM This Month

An issue was discovered in myStrom WiFi Switch V1 before 2.66, WiFi Switch V2 before 3.80, WiFi Switch EU before 3.80, WiFi Bulb before 2.58, WiFi LED Strip before 3.80, WiFi Button before 2.73, and. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Wifi Switch Firmware Wifi Button Plus Firmware Wifi Button Firmware Wifi Switch Eu Firmware +2
NVD
CVSS 3.0
6.5
EPSS
0.8%
CVE-2018-15478 HIGH This Week

An issue was discovered in myStrom WiFi Switch V1 before 2.66, WiFi Switch V2 before 3.80, WiFi Switch EU before 3.80, WiFi Bulb before 2.58, WiFi LED Strip before 3.80, WiFi Button before 2.73, and. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Authentication Bypass Wifi Switch Firmware Wifi Button Plus Firmware Wifi Button Firmware Wifi Switch Eu Firmware +2
NVD
CVSS 3.0
8.1
EPSS
0.9%
CVE-2018-15477 CRITICAL Act Now

myStrom WiFi Switch V1 devices before 2.66 did not sanitize a parameter received from the cloud that was used in an OS command. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Command Injection Wifi Switch Firmware
NVD
CVSS 3.0
9.8
EPSS
1.6%
CVE-2018-15476 HIGH This Week

An issue was discovered in myStrom WiFi Switch V1 before 2.66, WiFi Switch V2 before 3.80, WiFi Switch EU before 3.80, WiFi Bulb before 2.58, WiFi LED Strip before 3.80, WiFi Button before 2.73, and. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Code Injection Wifi Switch Firmware Wifi Button Plus Firmware Wifi Button Firmware Wifi Switch Eu Firmware +2
NVD
CVSS 3.0
8.1
EPSS
0.8%
EPSS 1% CVSS 8.8
HIGH This Week

An issue was discovered in myStrom WiFi Switch V1 before 2.66, WiFi Switch V2 before 3.80, WiFi Switch EU before 3.80, WiFi Bulb before 2.58, WiFi LED Strip before 3.80, WiFi Button before 2.73, and. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Wifi Switch Firmware Wifi Button Plus Firmware +4
NVD
EPSS 1% CVSS 6.5
MEDIUM This Month

An issue was discovered in myStrom WiFi Switch V1 before 2.66, WiFi Switch V2 before 3.80, WiFi Switch EU before 3.80, WiFi Bulb before 2.58, WiFi LED Strip before 3.80, WiFi Button before 2.73, and. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Wifi Switch Firmware Wifi Button Plus Firmware +4
NVD
EPSS 1% CVSS 8.1
HIGH This Week

An issue was discovered in myStrom WiFi Switch V1 before 2.66, WiFi Switch V2 before 3.80, WiFi Switch EU before 3.80, WiFi Bulb before 2.58, WiFi LED Strip before 3.80, WiFi Button before 2.73, and. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Authentication Bypass Wifi Switch Firmware Wifi Button Plus Firmware +4
NVD
EPSS 2% CVSS 9.8
CRITICAL Act Now

myStrom WiFi Switch V1 devices before 2.66 did not sanitize a parameter received from the cloud that was used in an OS command. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Command Injection Wifi Switch Firmware
NVD
EPSS 1% CVSS 8.1
HIGH This Week

An issue was discovered in myStrom WiFi Switch V1 before 2.66, WiFi Switch V2 before 3.80, WiFi Switch EU before 3.80, WiFi Bulb before 2.58, WiFi LED Strip before 3.80, WiFi Button before 2.73, and. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Code Injection Wifi Switch Firmware Wifi Button Plus Firmware +4
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy