Security Advisory

CVE-2013-4863

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-01-28 16:09:32

Last updated 2024-08-06 16:59:40

Assigner mitre

State PUBLISHED

Description

The HomeAutomationGateway service in MiCasaVerde VeraLite with firmware 1.5.408 allows (1) remote attackers to execute arbitrary Lua code via a RunLua action in a request to upnp/control/hag on port 49451 or (2) remote authenticated users to execute arbitrary Lua code via a RunLua action in a request to port_49451/upnp/control/hag.

← Browse all CVEs View on cve.org ↗