Описание
The TTLock App does not employ proper verification procedures to ensure that it is communicating with the expected device, allowing for connection to a device that spoofs the MAC address of a lock, which compromises the legitimate locks integrity.
EPSS
Процентиль: 4%
0.0002
Низкий
6.5 Medium
CVSS3
Дефекты
CWE-940
Связанные уязвимости
CVSS3: 6.5
github
почти 2 года назад
The TTLock App does not employ proper verification procedures to ensure that it is communicating with the expected device, allowing for connection to a device that spoofs the MAC address of a lock, which compromises the legitimate locks integrity.
EPSS
Процентиль: 4%
0.0002
Низкий
6.5 Medium
CVSS3
Дефекты
CWE-940