CVE-2018-17921

EPSS 0.7%CWE-284

SAGA1-L8B with any firmware versions prior to A0.10 are vulnerable to an attack that may allow an attacker to force-pair the device without human interaction.

Affected products

GAIN Electronic Co. Ltd · SAGA1-L8B

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://ics-cert.us-cert.gov/advisories/ICSA-18-296-02 http://www.securityfocus.com/bid/105729