Описание
An issue was discovered in Lush 2 through 2020-02-25. Due to the lack of Bluetooth traffic encryption, it is possible to hijack an ongoing Bluetooth connection between the Lush 2 and a mobile phone. This allows an attacker to gain full control over the device.
EPSS
Процентиль: 9%
0.00031
Низкий
8.8 High
CVSS3
Дефекты
CWE-276
Связанные уязвимости
CVSS3: 8.8
github
больше 1 года назад
An issue was discovered in Lush 2 through 2020-02-25. Due to the lack of Bluetooth traffic encryption, it is possible to hijack an ongoing Bluetooth connection between the Lush 2 and a mobile phone. This allows an attacker to gain full control over the device.
EPSS
Процентиль: 9%
0.00031
Низкий
8.8 High
CVSS3
Дефекты
CWE-276