A heap-based buffer overflow vulnerability exists on the ecobee3 lite 4.5.81.200 device in the HKProcessConfig function of the HomeKit Wireless Access Control setup process. A threat actor can exploit this vulnerability to force the device to connect to a SSID or cause a denial of service.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
ecobee ecobee3_lite_firmware 4.5.81.200 |