Описание
Wokka Lokka Q50 devices through 2021-11-30 allow remote attackers (who know the SIM phone number and password) to listen to a device's surroundings via a callback in an SMS command, as demonstrated by the 123456 and 523681 default passwords.
Ссылки
- Third Party Advisory
- Third Party Advisory
Уязвимые конфигурации
Конфигурация 1
Одновременно
cpe:2.3:o:wokkalokka:wokka_watch_q50_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:wokkalokka:wokka_watch_q50:-:*:*:*:*:*:*:*
EPSS
Процентиль: 53%
0.00304
Низкий
8.1 High
CVSS3
9.3 Critical
CVSS2
Дефекты
CWE-319
Связанные уязвимости
CVSS3: 8.1
github
около 4 лет назад
Wokka Lokka Q50 devices through 2021-11-30 allow remote attackers (who know the SIM phone number and password) to listen to a device's surroundings via a callback in an SMS command, as demonstrated by the 123456 and 523681 default passwords.
EPSS
Процентиль: 53%
0.00304
Низкий
8.1 High
CVSS3
9.3 Critical
CVSS2
Дефекты
CWE-319