Security Advisory
CVE-2026-33268
CVE vulnerability detail — eXtreme Datacenter Security Operations
Description
Nanoleaf Lines 12.3.2 does not authenticate firmware file uploads. A remote, unauthenticated attacker can upload firmware files on the device and consume storage resources. Fixed in 12.3.6.