{"vulnerability": "cve-2018-20007", "sightings": [{"uuid": "baf85493-dddc-4e06-bbd7-f89cbd48d82d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2018-20007", "type": "seen", "source": "https://t.me/cve_mitre_org/22", "content": "CVEnew Just tweeted ********************************************** CVE-2018-20007 Yeelight Smart AI Speaker 3.3.10_0074 devices have improper access control over the UART interface, allowing physical attackers to obtain a root shell. The attacker can then exfiltrate the audio data, read cleartext Wi-Fi credentials in a... https://t.co/y2T2pyHU4W", "creation_timestamp": "2019-05-16T19:50:56.000000Z"}]}