cvedb.io
CVE-2018-11315
MEDIUM · CVSS 6.5
EPSS exploitation probability: 0%
Published 2018-05-20T13:29:00.273 · Last modified 2026-06-17T01:35:42.350

Summary

The Local HTTP API in Radio Thermostat CT50 and CT80 1.04.84 and below products allows unauthorized access via a DNS rebinding attack. This can result in remote device temperature control, as demonstrated by a tstat t_heat request that accesses a device purchased in the Spring of 2018, and sets a home's target temperature to 95 degrees Fahrenheit. This vulnerability might be described as an addendum to CVE-2013-4860.

Affected products

radiothermostat — ct50_firmware

Does this affect you?

Add your gear to cvedb and we'll alert you only when radiothermostat ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.