Rapid7 Finds Security Flaws in Osram’s Lightify Products
ccording to Rapid7, the most severe of the vulnerabilities is the operational command execution on the devices themselves without authentication. Other potential issues include the accidental disclosure of sensitive network configuration information such as the storage of WiFi pre-shared keys (PSKs) in clear text in configuration files stored on a user’s device.