Vulnerabilities (CVE)

Filtered by vendor Ecobee Subscribe
Filtered by product Ecobee4 Firmware
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2018-6402 1 Ecobee 2 Ecobee4, Ecobee4 Firmware 2024-11-21 2.9 LOW 7.5 HIGH
Ecobee Ecobee4 4.2.0.171 devices can be forced to deauthenticate and connect to an unencrypted Wi-Fi network with the same SSID, even if the device settings specify use of encryption such as WPA2, as long as the competing network has a stronger signal. An attacker must be able to set up a nearby SSID, similar to an "Evil Twin" attack.