Blink1Control2 contains weak encryption. The vulnerability exists in start
function in server/skypeService.js
because the passwords in event rules are not properly handled, allowing an attacker to access unauthorized information in the system.
packetstormsecurity.com/files/168428/Blink1Control2-2.2.7-Weak-Password-Encryption.html
github.com/advisories/GHSA-jqhq-pfg3-fg5p
github.com/p1ckzi/CVE-2022-35513
github.com/todbot/Blink1Control2/commit/efe174823f67bbdcee8863e02df67a130f132075
github.com/todbot/Blink1Control2/issues/175
github.com/todbot/Blink1Control2/releases
github.com/topics/cve-2022-35513