Filtered by vendor Nanoleaf Subscriptions
Total 4 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2023-42189 9 Eve, Govee, Nanoleaf and 6 more 18 Eve Door And Window, Eve Door And Window Firmware, Led Strip and 15 more 2024-11-27 7.5 High
Insecure Permissions vulnerability in Connectivity Standards Alliance Matter Official SDK v.1.1.0.0 , Nanoleaf Light strip v.3.5.10, Govee LED Strip v.3.00.42, switchBot Hub2 v.1.0-0.8, Phillips hue hub v.1.59.1959097030, and yeelight smart lamp v.1.12.69 allows a remote attacker to cause a denial of service via a crafted script to the KeySetRemove function.
CVE-2023-45955 1 Nanoleaf 2 Lightstrip, Lightstrip Firmware 2024-11-21 7.5 High
An issue discovered in Nanoleaf Light strip v3.5.10 allows attackers to cause a denial of service via crafted write binding attribute commands.
CVE-2022-47758 1 Nanoleaf 1 Nanoleaf Firmware 2024-11-21 9.8 Critical
Nanoleaf firmware v7.1.1 and below is missing TLS verification, allowing attackers to execute arbitrary code via a DNS hijacking attack.
CVE-2022-46640 1 Nanoleaf 1 Nanoleaf Desktop 2024-11-21 9.8 Critical
Nanoleaf Desktop App before v1.3.1 was discovered to contain a command injection vulnerability which is exploited via a crafted HTTP request.