exploitDog

CVE-2023-50123

Опубликовано: 11 янв. 2024

Источник: nvd

CVSS3: 8.1

EPSS Низкий

Описание

The number of attempts to bring the Hozard Alarm system (alarmsystemen) v1.0 to a disarmed state is not limited. This could allow an attacker to perform a brute force on the SMS authentication, to bring the alarm system to a disarmed state.

Ссылки

https://www.secura.com/services/iot/consumer-products/security-concerns-in-popular-smart-home-devices
Exploit
Third Party Advisory
https://www.secura.com/services/iot/consumer-products/security-concerns-in-popular-smart-home-devices
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:hozard:alarm_system:1.0:*:*:*:*:*:*:*

EPSS

Процентиль: 52%

0.00286

Низкий

8.1 High

CVSS3

Дефекты

CWE-307

CWE-307

Связанные уязвимости

GHSA-ccvq-2hfm-57f3

CVSS3: 8.1

github

около 2 лет назад

The number of attempts to bring the Hozard Alarm system (alarmsystemen) v1.0 to a disarmed state is not limited. This could allow an attacker to perform a brute force on the SMS authentication, to bring the alarm system to a disarmed state.

EPSS

Процентиль: 52%

0.00286

Низкий

8.1 High

CVSS3

Дефекты

CWE-307

CWE-307