Personal Info

• Developer of HA-WyzeAPI
• Sometimes I write things! Feel free to check out my blog!

Work Info

• I am based in Charlotte, NC working for Red Hat as a Product Security Engineer
• AWS Certified Cloud Practitioner

Security Disclosures

JoshuaMulliken/CVE-2019-8978

Author: Joshua Mulliken joshua@mulliken.net Thanks to: Carnegie Mellon University CERT Coordination Center Date Found: Dec. 17, 2018 Vendor: Ellucian Company L.P. Vendor Homepage: https://www.ellucian.com Products: Banner Web Tailor and Banner Enterprise Identity Services Web Tailor Affected Versions: 8.8.3, 8.8.4, 8.9 Banner Enterprise Identity Services Affected Versions: 8.3, 8.3.1, 8.3.2, 8.4 CVE: CVE-2019-8978 An improper authentication vulnerability (CWE-287) was identified in Banner Web Tailor and Banner Enterprise Identity Services.

github.com

Open Source

JoshuaMulliken/ha-wyzeapi

This is a custom component to allow control of Wyze Bulbs and Switches in Homeassistant using the unofficial Wyze API. Please note this mimics the Wyze app and therefore Wyze may cut off access at anytime.

github.com