CVE-2018-9162

Contec Smart Home 4.15 devices do not require authentication for new_user.php, edit_user.php, delete_user.php, and user.php, as demonstrated by changing the admin password and then obtaining control over doors. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt