Code injection

2018-10-2422:29:00

PRIOn knowledge base

www.prio-n.com

8.6 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

51.5%

JSON

SAGA1-L8B with any firmware versions prior to A0.10 are vulnerable to an attack that may allow an attacker to force-pair the device without human interaction.

CPENameOperatorVersion
saga1-l8b_firmwareeq< a0.10

CPE	Name	Operator	Version
	saga1-l8b_firmware	eq	< a0.10

References

www.securityfocus.com/bid/105729

ics-cert.us-cert.gov/advisories/ICSA-18-296-02