November 2, SecurityWeek – (International) Belkin WeMo devices expose smartphones to attacks. Invincea security researchers discovered two serious vulnerabilities affecting Belkin’s WeMo home automation devices and their associated Android applications, including a flaw that could be exploited to remotely gain root access to a WeMo device, and a cross-site scripting (XSS) flaw in WeMo’s Android app that could be exploited to execute arbitrary JavaScript code in the context of the Android application. Belkin has patched the security holes in the Android app and is working to release a firmware update to resolve the device flaws. Source
Above Reprinted from the USDHS Daily Open Source Infrastructure Report