Security Advisory
CVE-2017-12095
CVE vulnerability detail — eXtreme Datacenter Security Operations
Description
An exploitable vulnerability exists in the WiFi Access Point feature of Circle with Disney running firmware 2.0.1. A series of WiFi packets can force Circle to setup an Access Point with default credentials. An attacker needs to send a series of spoofed "de-auth" packets to trigger this vulnerability.