Vulnerabilities > Lutron > Homeworks QS Firmware

DATE CVE VULNERABILITY TITLE RISK
2018-06-02 CVE-2018-11682 Use of Hard-coded Credentials vulnerability in Lutron products
Default and unremovable support credentials allow attackers to gain total super user control of an IoT device through a TELNET session to products using the Stanza Lutron integration protocol Revision M to Revision Y.
network
low complexity
lutron CWE-798
critical
 9.8
9.8
2018-06-02 CVE-2018-11681 Use of Hard-coded Credentials vulnerability in Lutron products
Default and unremovable support credentials (user:nwk password:nwk2) allow attackers to gain total super user control of an IoT device through a TELNET session to products using the RadioRA 2 Lutron integration protocol Revision M to Revision Y.
network
low complexity
lutron CWE-798
critical
 9.8
9.8
2018-06-02 CVE-2018-11629 Use of Hard-coded Credentials vulnerability in Lutron products
Default and unremovable support credentials (user:lutron password:integration) allow attackers to gain total super user control of an IoT device through a TELNET session to products using the HomeWorks QS Lutron integration protocol Revision M to Revision Y.
network
low complexity
lutron CWE-798
critical
 9.8
9.8