CVE-2022-31277

Xiaomi Lamp 1 v2.0.4_0066 was discovered to be vulnerable to replay attacks. This allows attackers to to bypass the expected access restrictions and gain control of the switch and other functions via a crafted POST request.
References
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:mi:xiaomi_lamp_1_firmware:2.0.4_0066:*:*:*:*:*:*:*
cpe:2.3:h:mi:xiaomi_lamp_1:-:*:*:*:*:*:*:*

History

No history.

Information

Published : 2022-06-16 15:15

Updated : 2024-02-28 19:09


NVD link : CVE-2022-31277

Mitre link : CVE-2022-31277

CVE.ORG link : CVE-2022-31277


JSON object : View

Products Affected

mi

  • xiaomi_lamp_1
  • xiaomi_lamp_1_firmware
CWE
CWE-294

Authentication Bypass by Capture-replay