Openweave Openweave-core — known CVE vulnerabilities
Every CVE whose affected-product data names Openweave Openweave-core, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2019-5038 — CVSS 8.8 (high): An exploitable command execution vulnerability exists in the print-tlv command of Weave tool. A specially crafted weave TLV can trigger a…
CVE-2019-5039 — CVSS 8.8 (high): An exploitable command execution vulnerability exists in the ASN1 certificate writing functionality of Openweave-core version 4.0.2. A…
CVE-2019-5040 — CVSS 7.5 (high): An exploitable information disclosure vulnerability exists in the Weave MessageLayer parsing of Openweave-core version 4.0.2 and Nest Cam…