Ecobee - Ecobee3 Lite CVE

Filtered by vendor Ecobee Subscribe

Filtered by product Ecobee3 Lite

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2021-27952	1 Ecobee	2 Ecobee3 Lite, Ecobee3 Lite Firmware	2021-08-12	5.0 MEDIUM	9.8 CRITICAL
Hardcoded default root credentials exist on the ecobee3 lite 4.5.81.200 device. This allows a threat actor to gain access to the password-protected bootloader environment through the serial console.

Vulnerabilities (CVE)