Today > 1 Critical | 5 High | 21 Medium vulnerabilities   -   You can now download lists of IOCs here!

CVE-2022-32502

May 14, 2024, 4:13 p.m.

Product(s) Impacted

Nuki Bridge

  • 1.22.0
  • 2.13.2

Nuki Bridge

  • before 1.22.0
  • before 2.13.2

Description

An issue was discovered on certain Nuki Home Solutions devices. There is a buffer overflow over the encrypted token parsing logic in the HTTP service that allows remote code execution. This affects Nuki Bridge v1 before 1.22.0 and v2 before 2.13.2.

Weaknesses

Date

Published: May 14, 2024, 10:43 a.m.

Last Modified: May 14, 2024, 4:13 p.m.

Status : Awaiting Analysis

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

cve@mitre.org

References