CVE-2021-26638

Summary

Improper Authentication vulnerability in S&D smarthome(smartcare) application can cause authentication bypass and information exposure. Remote attackers can use this vulerability to take control of the home environment including indoor control.

Affected Software

VendorProductVersion RangeStatus
Xi S&D Inc.S&D smarthome (smartcare)unspecified <= 3.2.48affected

Weaknesses

  • CWE-287: CWE-287 Improper Authentication

ADP Enrichment

CVE Program Container

Additional References

References