Security Advisory

CVE-2023-1749

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-04-04 16:54:46

Last updated 2025-01-16 21:36:36

Assigner icscert

State PUBLISHED

Description

The listed versions of Nexx Smart Home devices lack proper access control when executing actions. An attacker with a valid NexxHome deviceId could send API requests that the affected devices would execute.

← Browse all CVEs View on cve.org ↗