Lucene search
K

10 matches found

0day.today
0day.today
added 2024/03/04 12:0 a.m.365 views

Maxima Max Pro Power - BLE Traffic Replay (Unauthenticated) Vulnerability

Exploit Title: Maxima Max Pro Power - BLE Traffic Replay Unauthenticated Exploit Author: Alok kumar email protected, Cyberpwn Technologies Pvt. Ltd. Vendor Homepage: https://www.maximawatches.com Product Link: https://www.maximawatches.com/products/max-pro-power Firmware Version: v1.0 486A Tested...

4.3CVSS4.7AI score0.00511EPSS
Exploits4
Exploit DB
Exploit DB
added 2024/03/03 12:0 a.m.325 views

Maxima Max Pro Power - BLE Traffic Replay (Unauthenticated)

Exploit Title: Maxima Max Pro Power - BLE Traffic Replay Unauthenticated Date: 13-Nov-2023 Exploit Author: Alok kumar [email protected], Cyberpwn Technologies Pvt. Ltd. Vendor Homepage: https://www.maximawatches.com Product Link: https://www.maximawatches.com/products/max-pro-power Firmware...

4.3CVSS4.7AI score0.00511EPSS
Exploits4
NVD
NVD
added 2023/12/07 6:15 a.m.24 views

CVE-2023-46916

Maxima Max Pro Power 1.0 486A devices allow BLE traffic replay. An attacker can use GATT characteristic handle 0x0012 to perform potentially disruptive actions such as starting a Heart Rate monitor...

4.3CVSS0.00511EPSS
Exploits4References2
Prion
Prion
added 2023/12/07 6:15 a.m.17 views

Design/Logic Flaw

Maxima Max Pro Power 1.0 486A devices allow BLE traffic replay. An attacker can use GATT characteristic handle 0x0012 to perform potentially disruptive actions such as starting a Heart Rate monitor...

3.3CVSS7.2AI score0.00511EPSS
Exploits4References2Affected Software1
Vulnrichment
Vulnrichment
added 2023/12/07 12:0 a.m.11 views

CVE-2023-46916

Maxima Max Pro Power 1.0 486A devices allow BLE traffic replay. An attacker can use GATT characteristic handle 0x0012 to perform potentially disruptive actions such as starting a Heart Rate monitor...

6.9AI score0.00511EPSS
Exploits4References2
CVE
CVE
added 2023/12/07 12:0 a.m.45 views

CVE-2023-46916

CVE-2023-46916 affects Maxima Max Pro Power 1.0 486A watches. The BLE threat is a replay at GATT handle 0x0012, enabling unauthorized actions such as starting/changing the heart‑rate monitor and related display/notification changes. Public exploit notes describe unauthenticated access demonstrati...

4.3CVSS4.6AI score0.00511EPSS
Exploits4References2Affected Software1
Cvelist
Cvelist
added 2023/12/07 12:0 a.m.25 views

CVE-2023-46916

Maxima Max Pro Power 1.0 486A devices allow BLE traffic replay. An attacker can use GATT characteristic handle 0x0012 to perform potentially disruptive actions such as starting a Heart Rate monitor...

5AI score0.00511EPSS
Exploits4References2
CNNVD
CNNVD
added 2023/12/07 12:0 a.m.5 views

Maxima Max Pro Power Security Vulnerability

The Maxima Max Pro Power is a smartwatch from Maxima. A security vulnerability exists in Maxima Max Pro Power 1.0 486A, which originates from allowing BLE traffic replay, and can be exploited by an attacker to perform destructive actions, such as activating the heart rate monitor, using GATT...

4.3CVSS4.8AI score0.00511EPSS
Exploits4References4
Positive Technologies
Positive Technologies
added 2023/12/06 12:0 a.m.6 views

PT-2023-30260 · Unknown · Maxima Max Pro Power

Name of the Vulnerable Software and Affected Versions: Maxima Max Pro Power version 1.0 486A Description: The issue allows BLE traffic replay, enabling an attacker to perform potentially disruptive actions. This can be achieved by using the GATT characteristic handle 0x0012, for example, to start...

4.3CVSS4.3AI score0.00511EPSS
Exploits4References6
Packet Storm
Packet Storm
added 2023/11/13 12:0 a.m.325 views

Maxima Max Pro Power 1.0 486A BLE Traffic Replay

Exploit Title: Maxima Max Pro Power - BLE Traffic Replay Unauthenticated Date: 13-Nov-2023 Exploit Author: Alok kumar [email protected], Cyberpwn Technologies Pvt. Ltd. Vendor Homepage: https://www.maximawatches.com Product Link: https://www.maximawatches.com/products/max-pro-power Firmware...

7.4AI score0.00511EPSS
Exploits4
Rows per page
Query Builder