Security Advisory

CVE-2017-2915

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2017-11-07 16:00:00

Last updated 2024-09-17 04:20:26

Assigner talos

State PUBLISHED

Description

An exploitable vulnerability exists in the WiFi configuration functionality of Circle with Disney running firmware 2.0.1. A specially crafted SSID can cause the device to execute arbitrary shell commands. An attacker needs to send a couple of HTTP requests and setup an access point reachable by the device to trigger this vulnerability.

← Browse all CVEs View on cve.org ↗