exploitDog

CVE-2023-50129

Опубликовано: 11 янв. 2024

Источник: nvd

CVSS3: 6.5

EPSS Низкий

Описание

Missing encryption in the NFC tags of the Flient Smart Door Lock v1.0 allows attackers to create a cloned tag via brief physical proximity to the original tags, which results in an attacker gaining access to the perimeter.

Ссылки

https://www.secura.com/services/iot/consumer-products/security-concerns-in-popular-smart-home-devices
Exploit
Third Party Advisory
https://www.secura.com/services/iot/consumer-products/security-concerns-in-popular-smart-home-devices
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:o:flient:smart_lock_advanced_firmware:1.0:*:*:*:*:*:*:*

cpe:2.3:h:flient:smart_lock_advanced:-:*:*:*:*:*:*:*

EPSS

Процентиль: 5%

0.00023

Низкий

6.5 Medium

CVSS3

Дефекты

CWE-311

CWE-311

Связанные уязвимости

GHSA-rpf8-h3x8-r929

CVSS3: 6.5

github

около 2 лет назад

Missing encryption in the NFC tags of the Flient Smart Door Lock v1.0 allows attackers to create a cloned tag via brief physical proximity to the original tags, which results in an attacker gaining access to the perimeter.

EPSS

Процентиль: 5%

0.00023

Низкий

6.5 Medium

CVSS3

Дефекты

CWE-311

CWE-311