CVE-2019-5014

Summary

An exploitable improper access control vulnerability exists in the bluetooth low energy functionality of Winco Fireworks FireFly FW-1007 V2.0. An attacker can connect to the device to trigger this vulnerability.

Affected Software

VendorProductVersion RangeStatus
n/aWinco FireflyWinco Fireworks FireFly FW-1007 V2.0affected

Weaknesses

  • CWE-284: CWE-284: Improper Access Control

ADP Enrichment

CVE Program Container

Additional References

References