1 results (0.023 seconds)

CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 1

Nanoleaf firmware v7.1.1 and below is missing TLS verification, allowing attackers to execute arbitrary code via a DNS hijacking attack. • http://nanoleaf.com https://pwning.tech/cve-2022-47758 • CWE-295: Improper Certificate Validation •