Vulnerabilities > CVE-2019-5616 - Unspecified vulnerability in Broadcastboxes Scion-8 Firmware

CVSS 5.3 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

LOW

Integrity impact

NONE

Availability impact

NONE

network

low complexity

broadcastboxes

NVD

Published: 2019-03-15

Updated: 2024-11-21

Summary

CircuitWerkes Sicon-8, a hardware device used for managing electrical devices, ships with a web-based front-end controller and implements an authentication mechanism in JavaScript that is run in the context of a user's web browser.

Vulnerable Configurations

Part	Description	Count
OS	Broadcastboxes Broadcastboxes Scion 8 Firmware -	1
Hardware	Broadcastboxes Broadcastboxes Scion 8 -	1

References

https://blog.rapid7.com/2019/03/12/r7-2019-01-circuitwerkes-sicon-8-client-side-authentication-read-only-bypass-cve-2019-5616/
https://blog.rapid7.com/2019/03/12/r7-2019-01-circuitwerkes-sicon-8-client-side-authentication-read-only-bypass-cve-2019-5616/