Vulnerabilities > Nightowlsp
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-06-08 | CVE-2020-28713 | Authentication Bypass by Capture-replay vulnerability in Nightowlsp Smart Doorbell Firmware 20190505 Incorrect access control in push notification service in Night Owl Smart Doorbell FW version 20190505 allows remote users to send push notification events via an exposed PNS server. | 6.5 |
| 2021-05-06 | CVE-2021-31793 | Missing Authentication for Critical Function vulnerability in Nightowlsp Wdb-20 Firmware 20190314 An issue exists on NightOwl WDB-20-V2 WDB-20-V2_20190314 devices that allows an unauthenticated user to gain access to snapshots and video streams from the doorbell. | 7.5 |