Design/Logic Flaw

2024-01-2321:15:00

PRIOn knowledge base

www.prio-n.com

replay attacks

unauthorized commands

thermostat

7.6 High

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

21.5%

JSON

The radio frequency communication protocol being used by Meross MSH30Q 4.5.23 is vulnerable to replay attacks, allowing attackers to record and replay previously captured communication to execute unauthorized commands or actions (e.g., thermostat’s temperature).

CPENameOperatorVersion
msh30q_firmwareeq4.5.23

CPE	Name	Operator	Version
	msh30q_firmware	eq	4.5.23

References

www.kth.se/cs/nse/research/software-systems-architecture-and-security/projects/ethical-hacking-1.1279219