Vulnerability Details CVE-2021-26638
Improper Authentication vulnerability in S&D smarthome(smartcare) application can cause authentication bypass and information exposure. Remote attackers can use this vulerability to take control of the home environment including indoor control.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 60.3%
CVSS Severity
CVSS v3 Score 7.3
CVSS v2 Score 10.0
References
Products affected by CVE-2021-26638
-
cpe:2.3:a:xisnd:s&d_smarthome:-
-
cpe:2.3:a:xisnd:s&d_smarthome:3.2.48