Crock Pot Smart Slow Cooker With Wemo Firmware

crock-pot_smart_slow_cooker_with_wemo_firmware

Vendor: Belkin • 1 CVE

CVEs (1)

CVE

VENDORS

PRODUCTS

UPDATED

PUBLISHED

CVSS

CVE-2019-12780

1Belkin

1Crock Pot Smart Slow Cooker With Wemo Firmware

Nov 21, 2024

Jun 10, 2019

N/A· v4

9.8 CRITICAL· v3

7.5 HIGH· v2

The Belkin Wemo Enabled Crock-Pot allows command injection in the Wemo UPnP API via the SmartDevURL argument to the SetSmartDevInfo action. A simple POST request to /upnp/control/basicevent1 can allow an attacker to exec...Show more