exploitDog

CVE-2023-26979

Опубликовано: 03 авг. 2023

Источник: nvd

CVSS3: 3.1

EPSS Низкий

Описание

Bluetens Electrostimulation Device BluetensQ device app version 4.3.15 is vulnerable to Man-in-the-middle attacks in the BLE channel. It allows attackers to decrease or increase the intensity of the stimulator by hijacking the BLE communication.

Ссылки

http://bluetens.com
Product
https://www.secura.com/blog/serious-safety-impact-found-in-bluetooth-low-energy-based-medical-devices
Exploit
Technical Description
Third Party Advisory
http://bluetens.com
Product
https://www.secura.com/blog/serious-safety-impact-found-in-bluetooth-low-energy-based-medical-devices
Exploit
Technical Description
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:bluetens:bluetensq:4.3.15:*:*:*:*:*:*:*

EPSS

Процентиль: 8%

0.0003

Низкий

3.1 Low

CVSS3

Дефекты

CWE-924

Связанные уязвимости

GHSA-h8q7-rp5j-9p6f

CVSS3: 3.1

github

больше 2 лет назад

Bluetens Electrostimulation Device BluetensQ device app version 4.3.15 is vulnerable to Man-in-the-middle attacks in the BLE channel. It allows attackers to decrease or increase the intensity of the stimulator by hijacking the BLE communication.

EPSS

Процентиль: 8%

0.0003

Низкий

3.1 Low

CVSS3

Дефекты

CWE-924