5 matches found
CVE-2023-50126
Missing encryption in the RFID tags of the Hozard alarm system Alarmsysteem v1.0 allow attackers to create a cloned tag via brief physical proximity to one of the original tags, which results in an attacker being able to bring the alarm system to a disarmed state...
Default credentials
A default engineer password set on the Hozard alarm system Alarmsysteem v1.0 allows an attacker to bring the alarm system to a disarmed state...
CVE-2023-50125
A default engineer password set on the Hozard alarm system Alarmsysteem v1.0 allows an attacker to bring the alarm system to a disarmed state...
CVE-2023-50127
CVE-2023-50127 affects the Hozard alarm system (Alarmsysteem) v1.0 and is caused by an Improper Authentication flaw where SMS commands are accepted from random phone numbers, enabling an attacker to disarm the system from any number. Practical impact described across sources includes the ability ...
CVE-2023-50125
The CVE concerns the Hozard Alarm system (Alarmsysteem) v1.0, where a default engineer password enables an attacker to disarm the system. Documents consistently describe the root cause as the use of a default credentials credential, leading to potential unauthorized disarming. Reported impact is ...