This page lists publicly disclosed CVE vulnerabilities affecting osram lightify_pro (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2016-5059 | OSRAM SYLVANIA Osram Lightify Pro before 2016-07-26 allows attackers to obtain sensitive information by reading screenshots under /private/var/mobile/Containers/Data/Application. | [email protected] | 6.5 | 0.24% | 2017-04-10 | 2026-05-13 |
| CVE-2016-5058 | OSRAM SYLVANIA Osram Lightify Pro through 2016-07-26 allows Zigbee replay. | [email protected] | 7.5 | 0.26% | 2017-04-10 | 2026-05-13 |
| CVE-2016-5057 | OSRAM SYLVANIA Osram Lightify Pro through 2016-07-26 does not use SSL pinning. | [email protected] | 7.5 | 0.31% | 2017-04-10 | 2026-05-13 |
| CVE-2016-5056 | OSRAM SYLVANIA Osram Lightify Pro before 2016-07-26 uses only 8 hex digits for a PSK. | [email protected] | 7.5 | 0.18% | 2017-04-10 | 2026-05-13 |
| CVE-2016-5055 | OSRAM SYLVANIA Osram Lightify Pro before 2016-07-26 has XSS in the username field and Wireless Client Mode configuration page. | [email protected] | 6.1 | 0.28% | 2017-04-10 | 2026-05-13 |