Описание
An issue was discovered on TK-Star Q90 Junior GPS horloge 3.1042.9.8656 devices. Any SIM card used with the device cannot have a PIN configured. If a PIN is configured, the device simply produces a "Remove PIN and restart!" message, and cannot be used. This makes it easier for an attacker to use the SIM card by stealing the device.
Ссылки
- Third Party Advisory
- Vendor Advisory
- Third Party Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одновременно
cpe:2.3:o:tk-star:q90_junior_gps_horloge_firmware:3.1042.9.8656:*:*:*:*:*:*:*
cpe:2.3:h:tk-star:q90_junior_gps_horloge:-:*:*:*:*:*:*:*
EPSS
Процентиль: 63%
0.00448
Низкий
6.8 Medium
CVSS3
4.6 Medium
CVSS2
Дефекты
NVD-CWE-noinfo
CWE-284
Связанные уязвимости
CVSS3: 6.8
github
больше 3 лет назад
An issue was discovered on TK-Star Q90 Junior GPS horloge 3.1042.9.8656 devices. Any SIM card used with the device cannot have a PIN configured. If a PIN is configured, the device simply produces a "Remove PIN and restart!" message, and cannot be used. This makes it easier for an attacker to use the SIM card by stealing the device.
EPSS
Процентиль: 63%
0.00448
Низкий
6.8 Medium
CVSS3
4.6 Medium
CVSS2
Дефекты
NVD-CWE-noinfo
CWE-284