CNNVD-202507-3119 Information
Jul 24, 2025
cve
CNNVD ID
CNNVD-202507-3119
Related CVE
- CNNVD Published: 2025-07-24
Description (Chinese)
Network Thermostat X-Series WiFi thermostats是美国Network Thermostat公司的一款WiFi只能恒温器。 Network Thermostat X-Series WiFi thermostats存在访问控制错误漏洞,该漏洞源于嵌入式Web服务器允许未经授权攻击者通过操纵特定元素重置用户凭据。
Description (English)
Network Thermostat X-Series WiFi othermostats are a thermostat for WiFi of the American company Network Thermostat. Network Thermostat X-Series WiFi othermostats have an access control error that stems from the embedded Web server allowing unauthorized assailants to reset user documents by manipulating specific elements.
Hazard Level
Low
Vulnerability Type
访问控制错误
Affected Vendor
Network Thermostat
Published
2025-07-24
Last Modified
2026-02-24
References
https://www.cisa.gov/news-events/ics-advisories/icsa-25-205-02
Patch
https://networkthermostat.com/products/wi-fi-thermostats
Share on: