2+ vulnerabilities with CVSS scores, EPSS exploit predictions, and CISA KEV status. Updated daily.
2 results for "CWE-862"
The Aqara Cloud Production API (open-cn.aqara.com/v3.0/open/api) would authorize any valid developer token for access to any account. This is an instance of "CWE-862: Missing Authorization" …
CWE-862: Missing Authorization vulnerability exists that could cause unauthorized access when enabled on the network and potentially impacting connected devices.
Free website and port scanning — find vulnerabilities before attackers do.