Описание
In Samsung Gear products, Bluetooth link key is updated to the different key which is same with attacker's link key. It can be attacked without user's intention only if attacker can reveal the Bluetooth address of target device and paired user's smartphone
Ссылки
- ExploitThird Party Advisory
- ExploitThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
Одновременно
cpe:2.3:o:google:android:-:*:*:*:*:*:*:*
Одно из
cpe:2.3:h:samsung:gear_s2:-:*:*:*:*:*:*:*
cpe:2.3:h:samsung:gear_s3:-:*:*:*:*:*:*:*
EPSS
Процентиль: 26%
0.00093
Низкий
5.7 Medium
CVSS3
5.7 Medium
CVSS2
Дефекты
CWE-20
Связанные уязвимости
CVSS3: 5.7
github
больше 3 лет назад
In Samsung Gear products, Bluetooth link key is updated to the different key which is same with attacker's link key. It can be attacked without user's intention only if attacker can reveal the Bluetooth address of target device and paired user's smartphone
EPSS
Процентиль: 26%
0.00093
Низкий
5.7 Medium
CVSS3
5.7 Medium
CVSS2
Дефекты
CWE-20