Vulnerabilities > CVE-2019-5616 - Unspecified vulnerability in Broadcastboxes Scion-8 Firmware

CVSS 5.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

NONE

Availability impact

NONE

network

low complexity

broadcastboxes

NVD

Published: 2019-03-15

Updated: 2020-08-24

Summary

CircuitWerkes Sicon-8, a hardware device used for managing electrical devices, ships with a web-based front-end controller and implements an authentication mechanism in JavaScript that is run in the context of a user's web browser.

Vulnerable Configurations

Part	Description	Count
OS	Broadcastboxes Broadcastboxes Scion 8 Firmware -	1
Hardware	Broadcastboxes Broadcastboxes Scion 8 -	1

References

https://blog.rapid7.com/2019/03/12/r7-2019-01-circuitwerkes-sicon-8-client-side-authentication-read-only-bypass-cve-2019-5616/