Описание
Google Glass before XE6 does not properly restrict the processing of QR codes, which allows physically proximate attackers to modify the configuration or redirect users to arbitrary web sites via a crafted symbol, as demonstrated by selecting a Wi-Fi access point in order to conduct a man-in-the-middle attack.
Уязвимые конфигурации
Конфигурация 1Версия до xe5 (включая)
cpe:2.3:h:google:glass:*:*:*:*:*:*:*:*
EPSS
Процентиль: 5%
0.00022
Низкий
6.9 Medium
CVSS2
Дефекты
CWE-264
Связанные уязвимости
github
больше 3 лет назад
Google Glass before XE6 does not properly restrict the processing of QR codes, which allows physically proximate attackers to modify the configuration or redirect users to arbitrary web sites via a crafted symbol, as demonstrated by selecting a Wi-Fi access point in order to conduct a man-in-the-middle attack.
EPSS
Процентиль: 5%
0.00022
Низкий
6.9 Medium
CVSS2
Дефекты
CWE-264