CVE-2015-6033

2015-10-3101:00:00

certcc

www.cve.org

6.4 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

44.7%

JSON

Qolsys IQ Panel (aka QOL) before 1.5.1 does not verify the digital signatures of software updates, which allows man-in-the-middle attackers to bypass intended access restrictions via a modified update.

References

www.kb.cert.org/vuls/id/573848