CRITICAL
Vivint
CVE published 2017-01-23
CVE-2014-8362
CVE-2014-8362 describes a critical access-control issue in Vivint Sky Control Panel firmware 1.1.1.9926. NVD states that remote attackers can enable or disable the alarm system and modify other security settings through the web-enabled interface. The NVD record maps the issue to CWE-284 (Improper Access Control) and assigns CVSS 3.0 vector AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H, reflecting severe confidentia [truncated]