Security Advisory

CVE-2018-6402

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-04-14 18:40:34

Last updated 2024-08-05 06:01:49

Assigner mitre

State PUBLISHED

Description

Ecobee Ecobee4 4.2.0.171 devices can be forced to deauthenticate and connect to an unencrypted Wi-Fi network with the same SSID, even if the device settings specify use of encryption such as WPA2, as long as the competing network has a stronger signal. An attacker must be able to set up a nearby SSID, similar to an "Evil Twin" attack.

← Browse all CVEs View on cve.org ↗