CVE-2023-2626

There exists an authentication bypass vulnerability in OpenThread border router devices and implementations. This issue allows unauthenticated nodes to craft radio frames using “Key ID Mode 2”: a special mode using a static encryption key to bypass security checks, resulting in arbitrary IP packe...

CVE-2023-2626

CVE-2023-2626 (OpenThread border router) : Authentication bypass allowing unauthenticated nodes to craft radio frames via a fixed “Key ID Mode 2” encryption key, enabling arbitrary IPv6 packets to be sent to and from devices on the LAN through the Thread network. Documented impact: bypass of secu...

Google Nest 授权问题漏洞

Google Nest is a smart home product by Google, an American company. Google Nest has a security vulnerability. The vulnerability allows unauthenticated nodes to forge radio frames using "Key ID Mode 2", a special mode that uses a static encryption key to bypass security checks, allowing arbitrary ...

PT-2023-20568 · Unknown · Openthread

Name of the Vulnerable Software and Affected Versions: OpenThread border router devices and implementations affected versions not specified Description: The issue is an authentication bypass vulnerability that allows unauthenticated nodes to craft radio frames using a special mode called Key ID...