Vulnerabilities > Getnexx

DATE	CVE	VULNERABILITY TITLE	RISK
2023-04-04	CVE-2023-1748	Use of Hard-coded Credentials vulnerability in Getnexx products The listed versions of Nexx Smart Home devices use hard-coded credentials. network low complexity getnexx CWE-798 critical	10.0
2023-04-04	CVE-2023-1749	Authorization Bypass Through User-Controlled Key vulnerability in Getnexx products The listed versions of Nexx Smart Home devices lack proper access control when executing actions. network low complexity getnexx CWE-639	6.5
2023-04-04	CVE-2023-1750	Authorization Bypass Through User-Controlled Key vulnerability in Getnexx products The listed versions of Nexx Smart Home devices lack proper access control when executing actions. network low complexity getnexx CWE-639	7.1
2023-04-04	CVE-2023-1751	Unspecified vulnerability in Getnexx products The listed versions of Nexx Smart Home devices use a WebSocket server that does not validate if the bearer token in the Authorization header belongs to the device attempting to associate. network low complexity getnexx	5.3
2023-04-04	CVE-2023-1752	Improper Authentication vulnerability in Getnexx products The listed versions of Nexx Smart Home devices could allow any user to register an already registered alarm or associated device with only the device’s MAC address. network low complexity getnexx CWE-287	4.3

Vulnerabilities > Getnexx {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Getnexx"}]}