28 matches found
EUVD-2025-29040
Malicious code in bioql PyPI...
EUVD-2025-27972
Malicious code in bioql PyPI...
CVE-2025-8699
Some "Stored Value" Unattended Payment Solutions of KioSoft use vulnerable NFC cards. Attackers could potentially use this vulnerability to change the balance on the cards and generate money. The account balance is stored on an insecure MiFare Classic NFC card and can be read and written back. By...
CVE-2025-8699
CVE-2025-8699 affects KioSoft’s Stored Value Unattended Payment Solutions. The flaw centers on insecure MiFare Classic NFC cards storing account balances that can be read and written, enabling an attacker to identify value fields and a checksum (calculated by XOR-ing cash with an unknown field) a...
CVE-2025-8699
Some "Stored Value" Unattended Payment Solutions of KioSoft use vulnerable NFC cards. Attackers could potentially use this vulnerability to change the balance on the cards and generate money. The account balance is stored on an insecure MiFare Classic NFC card and can be read and written back. By...
CVE-2025-8699
Some "Stored Value" Unattended Payment Solutions of KioSoft use vulnerable NFC cards. Attackers could potentially use this vulnerability to change the balance on the cards and generate money. The account balance is stored on an insecure MiFare Classic NFC card and can be read and written back. By...
KioSoft Stored Value Unattended Payment Solutions 安全漏洞
KioSoft Stored Value Unattended Payment Solutions is a self-service payment solution from KioSoft USA. A security vulnerability exists in KioSoft Stored Value Unattended Payment Solutions that stems from the use of an insecure MiFare Classic NFC card to store account balances, which could allow a...
CVE-2025-4053
The data stored in Be-Tech Mifare Classic card is stored in cleartext. An attacker having access to a Be-Tech hotel guest Mifare Classic card can create a master key card that unlocks all the locks in the building. This issue affects all Be-Tech Mifare Classic card systems. To fix the...
CVE-2025-4053
The data stored in Be-Tech Mifare Classic card is stored in cleartext. An attacker having access to a Be-Tech hotel guest Mifare Classic card can create a master key card that unlocks all the locks in the building. This issue affects all Be-Tech Mifare Classic card systems. To fix the...
CVE-2025-4053 Unauthorized creation of master key in Mifare Classic Be-Tech cards
The data stored in Be-Tech Mifare Classic card is stored in cleartext. An attacker having access to a Be-Tech hotel guest Mifare Classic card can create a master key card that unlocks all the locks in the building. This issue affects all Be-Tech Mifare Classic card systems. To fix the...
CVE-2025-4053
Be-Tech Mifare Classic card systems are affected. The root cause is that data stored on the Mifare Classic cards is in cleartext, enabling an attacker with a guest card to craft a master key card that can unlock all locks in the building. Affected component: Be-Tech Mifare Classic cards and assoc...
CVE-2025-4053 Unauthorized creation of master key in Mifare Classic Be-Tech cards
The data stored in Be-Tech Mifare Classic card is stored in cleartext. An attacker having access to a Be-Tech hotel guest Mifare Classic card can create a master key card that unlocks all the locks in the building. This issue affects all Be-Tech Mifare Classic card systems. To fix the...
Be-Tech Mifare Classic cards 安全漏洞
Be-Tech Mifare Classic cards are a line of electronic cards from Be-Tech. A security vulnerability exists in Be-Tech Mifare Classic cards that stems from the explicit storage of data, which could lead to the creation of master key cards...
PT-2025-22891 · Be Tech · Be-Tech Mifare Classic
Name of the Vulnerable Software and Affected Versions: Be-Tech Mifare Classic card systems affected versions not specified Description: The data stored in the Be-Tech Mifare Classic card is stored in cleartext. An attacker having access to a Be-Tech hotel guest Mifare Classic card can create a...
Hardware Backdoor Discovered in RFID Cards Used in Hotels and Offices Worldwide
Cybersecurity researchers have uncovered a hardware backdoor within a particular model of MIFARE Classic contactless cards that could allow authentication with an unknown key and open hotel rooms and office doors. The attacks have been demonstrated against FM11RF08S, a new variant of MIFARE Class...
Security Vulnerability in Saflok’s RFID-Based Keycard Locks
Its pretty devastating: Today, Ian Carroll, Lennert Wouters, and a team of other security researchers are revealing a hotel keycard hacking technique they call Unsaflok. The technique is a collection of security vulnerabilities that would allow a hacker to almost instantly open several models of...
Canada revisits decision to ban Flipper Zero
In February 2024 the Canadian government announced plans to ban the sale of the Flipper Zero, mainly because of its reported use to steal cars. The Flipper Zero is a portable device that can be used in penetration testing with a focus on wireless devices and access control systems. If that doesnt...
ASB-A-178725766
In rwmfchandlereadop of rwmfc.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution via a malicious NFC packet with no additional execution privileges needed. User interaction is not needed for exploitation...
Nespresso Smart Cards Brewed with Weak Security
Researchers have demonstrated how to outsmart Nespresso Pro machines that use certain smart cards, hacking them to dispense coffee on-demand. Nespresso produces a range of coffees and machines for personal and professional use. Some of the commercial machines accept Mifare Classic stored-value...
CVE-2019-9861
Due to the use of an insecure RFID technology MIFARE Classic, ABUS proximity chip keys RFID tokens of the ABUS Secvest FUAA50000 wireless alarm system can easily be cloned and used to deactivate the alarm system in an unauthorized way...