Lutron HomeWorks QS Firmware
Approved changes feed: RSS · Atom
cpe:2.3:o:lutron:homeworks_qs_firmware:-:*:*:*:*:*:*:*
part: o version: - update: *
| Vendor | Lutron (a8b22abf-be36-5d37-b592-4e308f5b4c71) |
|---|---|
| Product | Homeworks Qs Firmware (35ffd82e-68c8-5232-8117-dfdac74a263f) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2018-11682 |
vulnerable | 2026-06-08 05:10:38.790380 | db.gcve.eu details are currently unavailable. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2018-11681 |
vulnerable | 2026-06-08 05:10:38.789466 |
Details available
Default and unremovable support credentials (user:nwk password:nwk2) allow attackers to gain total super user control of an IoT device through a TELNET session to products using the RadioRA 2 Lutron integration protocol Revision M to Revision Y. NOTE: The vendor disputes this id as not being a vulnerability because what can be done through the ports revolve around controlling lighting, not code execution. A certain set of commands are listed, which bear some similarity to code, but they are not arbitrary and do not allow admin-level control of a machine
Published: 2018-06-02T13:00:00.000Z
Updated: 2024-08-05T08:17:08.550Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2018-11629 |
vulnerable | 2026-06-08 05:10:38.742116 | db.gcve.eu details are currently unavailable. | Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.