CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2019-5014

An exploitable improper access control vulnerability exists in the bluetooth low energy functionality of Winco Fireworks FireFly FW-1007 V2.0. An attacker can connect to the device to trigger this vulnerability.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 26.5%

CVSS Severity

CVSS v3 Score 6.5

CVSS v2 Score 3.3

References

https://talosintelligence.com/vulnerability_reports/TALOS-2019-0772
https://talosintelligence.com/vulnerability_reports/TALOS-2019-0772

Products affected by CVE-2019-5014

Wincofireworks » Fw-1007 » Version: N/A

cpe:2.3:h:wincofireworks:fw-1007:-
Wincofireworks » Fw-1007 Firmware » Version: 2.0

cpe:2.3:o:wincofireworks:fw-1007_firmware:2.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-5014

Products

Pricing

Contact Us