EUVD-2013-4711

🗓️ 07 Oct 2025 00:30:54Reported by EUVDType

LIXIL Corporation app has hardcoded Bluetooth PIN allowing attacker-triggered resource consumption.

Reporter	Title	Published	Views	Family All 7
CNVD	Unspecified Vulnerability in LIXIL Corporation My SATIS Genius Toilet Application	17 Apr 201500:00	–	cnvd
CVE	CVE-2013-4866	16 Apr 201523:00	–	cve
Cvelist	CVE-2013-4866	16 Apr 201523:00	–	cvelist
NVD	CVE-2013-4866	16 Apr 201523:59	–	nvd
Packet Storm	LIXIL Satis Toilet Hard-Coded Bluetooth PIN	2 Aug 201300:00	–	packetstorm
Prion	Hardcoded credentials	16 Apr 201523:59	–	prion
Rapid7 Blog	Software Engineering, Vulnerability and Risk Management: Revolutionizing the Security Landscape at Rapid7	24 Feb 202115:30	–	rapid7blog

[
  {
    "enisaIdVendor": [
      {
        "id": "57653a05-fac3-3b3d-a821-4c13112d0657",
        "vendor": {
          "name": "n/a"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "161f1dc5-319a-3d23-91a5-7ed07c59d01d",
        "product": {
          "name": "n/a"
        },
        "product_version": "n/a"
      }
    ]
  }
]

Source	Link
packetstormsecurity	www.packetstormsecurity.com/files/cve/CVE-2013-4866
trustwave	www.trustwave.com/spiderlabs/advisories/TWSL2013-020.txt
seclists	www.seclists.org/fulldisclosure/2013/Aug/18
independent	www.independent.co.uk/life-style/gadgets-and-tech/features/now-even-toilets-arent-safe-from-hacking-8747232.html
packetstormsecurity	www.packetstormsecurity.com/files/122655/LIXIL-Satis-Toilet-Hard-Coded-Bluetooth-PIN.html
arstechnica	www.arstechnica.com/security/2013/08/holy-sht-smart-toilet-hack-attack/
huffingtonpost	www.huffingtonpost.co.uk/2013/08/05/smart-toilet-could-attackmy-satis_n_3706116.html
github	www.github.com/advisories/GHSA-293c-r3p4-g63r

07 Oct 2025 00:30Current

6.4Medium risk

Vulners AI Score6.4

CVSS 23.3

EPSS0.00145