3.5 Low
CVSS3
Attack Vector
ADJACENT
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N
0.001 Low
EPSS
Percentile
30.8%
Use of hard-coded cryptographic key vulnerability in August Connect Wi-Fi Bridge App, Connect Firmware allows an attacker to decrypt an intercepted payload containing the Wi-Fi network authentication credentials. This issue affects: August Connect Wi-Fi Bridge App version v10.11.0 and prior versions on Android. August Connect Firmware version 2.2.12 and prior versions.
[
{
"platforms": [
"Android"
],
"product": "Smart Lock and Connect Wi-Fi Bridge App",
"vendor": "August",
"versions": [
{
"lessThanOrEqual": "v10.11.0",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
},
{
"product": "Connect Firmware",
"vendor": "August",
"versions": [
{
"lessThanOrEqual": "2.2.12",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
}
]