1 results (0.001 seconds)

CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0

Nanoleaf Desktop App before v1.3.1 was discovered to contain a command injection vulnerability which is exploited via a crafted HTTP request. • http://nanoleaf.com https://pwning.tech/cve-2022-46640 • CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') •