CVE-2023-1752

Severity CVSS v4.0:
Pending analysis
Type:
CWE-287 Authentication Issues
Publication date:
04/04/2023
Last modified:
07/11/2023

Description

The listed versions of Nexx Smart Home devices could allow any user to register an already registered alarm or associated device with only the device’s MAC address.

Vulnerable products and versions

CPE From Up to
cpe:2.3:o:getnexx:nxal-100_firmware:*:*:*:*:*:*:*:* nxal100v-p1-9-1 (including)
cpe:2.3:h:getnexx:nxal-100:-:*:*:*:*:*:*:*
cpe:2.3:o:getnexx:nxg-100b_firmware:*:*:*:*:*:*:*:* nxg100bv-p3-4-1 (including)
cpe:2.3:h:getnexx:nxg-100b:-:*:*:*:*:*:*:*
cpe:2.3:o:getnexx:nxpg-100w_firmware:*:*:*:*:*:*:*:* nxpg100cv4-0-0 (including)
cpe:2.3:h:getnexx:nxpg-100w:-:*:*:*:*:*:*:*
cpe:2.3:o:getnexx:nxg-200_firmware:*:*:*:*:*:*:*:* nxg200v-p3-4-1 (including)
cpe:2.3:h:getnexx:nxg-200:-:*:*:*:*:*:*:*


References to Advisories, Solutions, and Tools