CYBERHAWK / CVE / CVE-2018-25396

CVE-2018-25396

Heatmiser Wifi Thermostat

HIGH CVSS 7.5 other

The flaw

Credential disclosure vulnerability allows unauthenticated attackers to retrieve administrative credentials from networkSetup.htm page.

What to do

Apply vendor security updates when available

▸ Scan my repo for CVE-2018-25396

References

NVD CISA KEV OSV GitHub Advisory MITRE News search
First seen 2026-06-05 · Tracked by PickBits CyberHawk · Weekly CVE digest
← All CVEs RSS Scheduled audits