Security Advisory

CVE-2021-27954

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-08-03 14:26:39
Last updated 2024-08-03 21:33:17
Assigner mitre
State PUBLISHED

Description

A heap-based buffer overflow vulnerability exists on the ecobee3 lite 4.5.81.200 device in the HKProcessConfig function of the HomeKit Wireless Access Control setup process. A threat actor can exploit this vulnerability to force the device to connect to a SSID or cause a denial of service.