Vulnerabilities > CVE-2019-12944 - Missing Authorization vulnerability in Gluehome Glue Smart Lock Firmware 2.7.8

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
HIGH
Availability impact
NONE
network
low complexity
gluehome
CWE-862
NVD
Published: 2019-10-15
Updated: 2023-11-07

Summary

Glue Smart Lock 2.7.8 devices do not properly block guest access in certain situations where the network connection is unavailable.

Vulnerable Configurations

Part Description Count
OS
Gluehome
1
Hardware
Gluehome
1

Common Weakness Enumeration (CWE)

References