Security Advisory

CVE-2021-27953

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-08-03 14:36:41
Last updated 2024-08-03 21:33:16
Assigner mitre
State PUBLISHED

Description

A NULL pointer dereference vulnerability exists on the ecobee3 lite 4.5.81.200 device in the HomeKit Wireless Access Control setup process. A threat actor can exploit this vulnerability to cause a denial of service, forcing the device to reboot via a crafted HTTP request.