Lucene search

[email protected]NVD:CVE-2023-34553

HistoryJun 22, 2023 - 9:15 p.m.

CVE-2023-34553

2023-06-2221:15:09

CWE-294

[email protected]

web.nvd.nist.gov

wafu keyless smart lock

vulnerability

code replay attack

device unlocking

CVSS3

6.5

Attack Vector

ADJACENT

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

EPSS

Percentile

15.5%

JSON

An issue was discovered in WAFU Keyless Smart Lock v1.0 allows attackers to unlock a device via code replay attack.

Affected configurations

Nvd

Node

wafucnwafu_keyless_smart_lock_firmwareMatch1.0

AND

wafucnwafu_keyless_smart_lockMatch-

VendorProductVersionCPE
wafucnwafu_keyless_smart_lock_firmware1.0cpe:2.3:o:wafucn:wafu_keyless_smart_lock_firmware:1.0:*:*:*:*:*:*:*
wafucnwafu_keyless_smart_lock-cpe:2.3:h:wafucn:wafu_keyless_smart_lock:-:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
wafucn	wafu_keyless_smart_lock_firmware	1.0	cpe:2.3:o:wafucn:wafu_keyless_smart_lock_firmware:1.0:::::::*
wafucn	wafu_keyless_smart_lock	-	cpe:2.3:h:wafucn:wafu_keyless_smart_lock:-:::::::*

References

ashallen.net/wireless-smart-lock-vulnerability-disclosure

CVSS3

6.5

Attack Vector

ADJACENT

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

EPSS

Percentile

15.5%

JSON

Related for NVD:CVE-2023-34553

prion1 cvelist1 cve1