CVE-2017-12095

Summary

An exploitable vulnerability exists in the WiFi Access Point feature of Circle with Disney running firmware 2.0.1. A series of WiFi packets can force Circle to setup an Access Point with default credentials. An attacker needs to send a series of spoofed "de-auth" packets to trigger this vulnerability.

Affected Software

VendorProductVersion RangeStatus
Circle MediaCircleCircle with Disney 2.0.1affected

Weaknesses

  • wi-fi access point vulnerability

ADP Enrichment

CVE Program Container

Additional References

References