Hardcoded default root credentials exist on the ecobee3 lite 4.5.81.200 device. This allows a threat actor to gain access to the password-protected bootloader environment through the serial console.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
ecobee ecobee3_lite_firmware 4.5.81.200 |