28 matches found
EUVD-2021-22588
Malware in sbrugna...
EUVD-2021-22587
Malware in sbrugna...
EUVD-2021-22586
Malware in sbrugna...
EUVD-2021-22589
Malware in sbrugna...
Malicious code in che-theia-activity-tracker (npm)
The package che-theia-activity-tracker was found to contain malicious code...
MAL-2025-16870 Malicious code in che-theia-activity-tracker (npm)
The package che-theia-activity-tracker was found to contain malicious code...
CVE-2021-35952
fastrack Reflex 2.0 W307SREFLEXv90.89 Activity Tracker allows a Remote attacker to change the time, date, and month via Bluetooth LE Characteristics on handle 0x0017...
CVE-2021-35953
fastrack Reflex 2.0 W307SREFLEXv90.89 Activity Tracker allows a Remote attacker to cause a Denial of Service device outage via crafted choices of the last three bytes of a characteristic value...
CVE-2021-35954
fastrack Reflex 2.0 W307SREFLEXv90.89 Activity Tracker allows physically proximate attackers to dump the firmware, flash custom malicious firmware, and brick the device via the Serial Wire Debug SWD feature...
PT-2025-4301 · Aat · Aat
Name of the Vulnerable Software and Affected Versions: AAT Another Activity Tracker versions prior to 1.26 Description: AAT is a GPS-tracking application for tracking sportive activities, with an emphasis on cycling. The issue allows for data exfiltration from malicious apps installed on the same...
CVE-2021-35952
fastrack Reflex 2.0 W307SREFLEXv90.89 Activity Tracker allows a Remote attacker to change the time, date, and month via Bluetooth LE Characteristics on handle 0x0017...
CVE-2021-35953
fastrack Reflex 2.0 W307SREFLEXv90.89 Activity Tracker allows a Remote attacker to cause a Denial of Service device outage via crafted choices of the last three bytes of a characteristic value...
CVE-2021-35953
fastrack Reflex 2.0 W307SREFLEXv90.89 Activity Tracker allows a Remote attacker to cause a Denial of Service device outage via crafted choices of the last three bytes of a characteristic value...
Code injection
fastrack Reflex 2.0 W307SREFLEXv90.89 Activity Tracker allows a Remote attacker to cause a Denial of Service device outage via crafted choices of the last three bytes of a characteristic value...
Code injection
fastrack Reflex 2.0 W307SREFLEXv90.89 Activity Tracker allows an Unauthenticated Remote attacker to send a malicious firmware update via BLE and brick the device...
PT-2022-10480 · Unknown · Fastrack Reflex 2.0
Name of the Vulnerable Software and Affected Versions: fastrack Reflex 2.0 W307S REFLEX v90.89 Activity Tracker Description: The issue allows a remote attacker to cause a Denial of Service, resulting in a device outage. This can be achieved via crafted choices of the last three bytes of a...
CVE-2021-35952
fastrack Reflex 2.0 W307SREFLEXv90.89 Activity Tracker allows a Remote attacker to change the time, date, and month via Bluetooth LE Characteristics on handle 0x0017...
PT-2022-10479 · Unknown · Fastrack Reflex 2.0
Name of the Vulnerable Software and Affected Versions: fastrack Reflex 2.0 W307S REFLEX v90.89 Activity Tracker Description: The issue allows a remote attacker to change the time, date, and month via Bluetooth LE Characteristics on handle 0x0017. Recommendations: For fastrack Reflex 2.0 W307S...
CVE-2021-35954
fastrack Reflex 2.0 W307SREFLEXv90.89 Activity Tracker allows physically proximate attackers to dump the firmware, flash custom malicious firmware, and brick the device via the Serial Wire Debug SWD feature...
CVE-2021-35953
Summary: CVE-2021-35953 affects fastrack Reflex 2.0 W307S_REFLEX_v90.89 Activity Tracker. A remote attacker can cause a device outage (DoS) by crafting the last three bytes of a characteristic value, enabling unauthenticated network access to trigger the issue. The vulnerability surface centers o...