CVE-2021-34576

MEDIUM

Kaden PICOFLUX Air Firmware - Information Exposure via Observable Discrepancy

Title source: llm
STIX 2.1

Description

In Kaden PICOFLUX Air in all known versions an information exposure through observable discrepancy exists. This may give sensitive information (water consumption without distinct values) to third parties.

References (1)

Core 1
Core References
Third Party Advisory x_refsource_confirm
https://www.fit.vutbr.cz/~polcak/CVE-2021-34576.en

Scores

CVSS v3 4.3
EPSS 0.0035
EPSS Percentile 27.0%
Attack Vector ADJACENT_NETWORK
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Details

CWE
CWE-203
Status published
Products (1)
kadenvodomery/picoflux_air_firmware
Published Sep 16, 2021
Tracked Since Feb 18, 2026