One Article Review
| Source |  The Hacker News |
|---|---|
| Identifiant | 3249708 |
| Date de publication | 2021-08-18 08:48:40 (vue: 2021-08-18 16:05:57) |
| Titre | Critical ThroughTek SDK Bug Could Let Attackers Spy On Millions of IoT Devices |
| Texte | A security vulnerability has been found affecting several versions of ThroughTek Kalay P2P Software Development Kit (SDK), which could be abused by a remote attacker to take control of an affected device and potentially lead to remote code execution.
Tracked as CVE-2021-28372 (CVSS score: 9.6) and discovered by FireEye Mandiant in late 2020, the weakness concerns an improper access control flaw |
| Notes | ★★★ |
| Envoyé | Oui |
| Condensat | 2020 2021 28372 abused access affected affecting and discovered by attacker attackers been bug code concerns control could critical cve cvss development device devices execution fireeye flaw found has improper iot kalay kit late lead let mandiant millions p2p potentially remote score: sdk security several software spy take throughtek tracked versions vulnerability weakness which |
| Tags | Vulnerability Guideline |
| Stories | |
| Move | 
|
L'article ne semble pas avoir été repris aprés sa publication.
L'article ne semble pas avoir été repris sur un précédent.