CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2020-11924

An issue was discovered in WiZ Colors A60 1.14.0. Wi-Fi credentials are stored in cleartext in flash memory, which presents an information-disclosure risk for a discarded or resold device.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 6.0%

CVSS Severity

CVSS v3 Score 5.5

CVSS v2 Score 2.1

References

http://seclists.org/fulldisclosure/2024/Jul/14
https://www.eurofins-cybersecurity.com/news/connected-devices-wiz-smart-lightbulbs/
http://seclists.org/fulldisclosure/2024/Jul/14
https://www.eurofins-cybersecurity.com/news/connected-devices-wiz-smart-lightbulbs/

Products affected by CVE-2020-11924

Wizconnected » Colors A60 » Version: N/A

cpe:2.3:h:wizconnected:colors_a60:-
Wizconnected » Colors A60 Firmware » Version: 1.14.0

cpe:2.3:o:wizconnected:colors_a60_firmware:1.14.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-11924

Products

Pricing

Contact Us