Lucene search
K

86 matches found

CVE
CVE
added 2025/06/20 12:0 a.m.30 views

CVE-2025-32878

COROS PACE 3 vulnerable through version 3.0808.0 due to unvalidated X.509 server certificates during TLS handshakes when the device connects to WLAN to fetch firmware info. An active MITM with a self-signed cert can eavesdrop and manipulate HTTPS, potentially stealing the user’s API access token....

9.8CVSS6.5AI score0.00346EPSS
Exploits1References3Affected Software1
Vulnrichment
Vulnrichment
added 2025/06/20 12:0 a.m.6 views

CVE-2025-48705

An issue was discovered in COROS PACE 3 through 3.0808.0. Due to a NULL pointer dereference vulnerability, sending a crafted BLE message forces the device to reboot...

6.4AI score0.00446EPSS
Exploits1References2
CVE
CVE
added 2025/06/20 12:0 a.m.26 views

CVE-2025-32877

CVE-2025-32877 affects COROS PACE 3 devices up to firmware 3.0808.0. The device identifies itself as having no input/output capabilities, leading to the use of the Just Works BLE pairing method with no authentication. This enables a machine-in-the-middle scenario and allows attackers to interact ...

9.8CVSS7.4AI score0.00623EPSS
Exploits1References3Affected Software1
Vulnrichment
Vulnrichment
added 2025/06/20 12:0 a.m.4 views

CVE-2025-32880

An issue was discovered on COROS PACE 3 devices through 3.0808.0. It implements a function to connect the watch to a WLAN. With WLAN access, the COROS Pace 3 downloads firmware files via HTTP. However, the communication is not encrypted and allows sniffing and machine-in-the-middle attacks...

7.3AI score0.00381EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2025/06/20 12:0 a.m.4 views

CVE-2025-48706

An issue was discovered in COROS PACE 3 through 3.0808.0. Due to an out-of-bounds read vulnerability, sending a crafted BLE message forces the device to reboot...

6.9AI score0.00515EPSS
Exploits1References2
CVE
CVE
added 2025/06/20 12:0 a.m.19 views

CVE-2025-48705

CVE-2025-48705 affects COROS PACE 3 up to version 3.0808.0. The issue is caused by a NULL pointer dereference when processing a crafted BLE message, which can force the device to reboot. In the provided sources, there is no explicit patch version or official fix detail. A reported workaround from...

7.5CVSS6.4AI score0.00446EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2025/06/20 12:0 a.m.11 views

CVE-2025-32877

An issue was discovered on COROS PACE 3 devices through 3.0808.0. It identifies itself as a device without input or output capabilities, which results in the use of the Just Works pairing method. This method does not implement any authentication, which therefore allows machine-in-the-middle...

0.00623EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2025/06/20 12:0 a.m.4 views

PT-2025-26313 · Coros · Coros Pace 3

Name of the Vulnerable Software and Affected Versions: COROS PACE 3 devices versions through 3.0808.0 Description: An issue was discovered in the BLE implementation of the COROS smartwatch, which does not support LE Secure Connections and instead enforces BLE Legacy Pairing. In this pairing metho...

6.8CVSS6AI score0.00336EPSS
Exploits1References7
CNNVD
CNNVD
added 2025/06/20 12:0 a.m.3 views

COROS PACE 3 安全漏洞

COROS PACE 3 is a GPS sports watch from COROS China. A security vulnerability exists in COROS PACE 3 3.0808.0 and prior versions, which stems from a failure to require authentication for BLE services, which could lead to tampering with the device configuration...

8.8CVSS6.8AI score0.00466EPSS
Exploits1References4
Cvelist
Cvelist
added 2025/06/20 12:0 a.m.9 views

CVE-2025-32879

An issue was discovered on COROS PACE 3 devices through 3.0808.0. It starts advertising if no device is connected via Bluetooth. This allows an attacker to connect with the device via BLE if no other device is connected. While connected, none of the BLE services and characteristics of the device...

0.00466EPSS
Exploits1References3
CNNVD
CNNVD
added 2025/06/20 12:0 a.m.2 views

COROS PACE 3 安全漏洞

COROS PACE 3 is a GPS sports watch from COROS China. A security vulnerability exists in COROS PACE 3 3.0808.0 and prior versions, which originates from an out-of-bounds read and may cause the device to reboot...

9.1CVSS6.6AI score0.00515EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2025/06/20 12:0 a.m.6 views

PT-2025-26317 · Coros · Coros Pace 3

Name of the Vulnerable Software and Affected Versions: COROS PACE 3 versions through 3.0808.0 Description: An out-of-bounds read vulnerability exists in COROS PACE 3. Sending a crafted Bluetooth Low Energy BLE message forces the device to reboot. Recommendations: Update COROS PACE 3 to a version...

9.1CVSS6.2AI score0.00515EPSS
Exploits1References6
Cvelist
Cvelist
added 2025/06/20 12:0 a.m.10 views

CVE-2025-48706

An issue was discovered in COROS PACE 3 through 3.0808.0. Due to an out-of-bounds read vulnerability, sending a crafted BLE message forces the device to reboot...

0.00515EPSS
Exploits1References2
CNNVD
CNNVD
added 2025/06/20 12:0 a.m.3 views

COROS PACE 3 安全漏洞

COROS PACE 3 is a GPS sports watch from the Chinese company COROS. A security vulnerability exists in COROS PACE 3 3.0808.0 and earlier versions, which stems from an unvalidated TLS certificate and could lead to a man-in-the-middle attack...

9.8CVSS6.5AI score0.00346EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2025/06/20 12:0 a.m.9 views

PT-2025-26321 · Coros · Coros Pace 3

Name of the Vulnerable Software and Affected Versions: COROS PACE 3 versions through 3.0808.0 Description: An issue was discovered that affects the Bluetooth pairing method of the device. It identifies itself as a device without input or output capabilities, resulting in the use of the Just Works...

9.8CVSS6.5AI score0.00623EPSS
Exploits1References7
CNNVD
CNNVD
added 2025/06/20 12:0 a.m.3 views

COROS PACE 3 安全漏洞

COROS PACE 3 is a GPS sports watch from the Chinese company COROS. A security vulnerability exists in COROS PACE 3 3.0808.0 and prior versions, which stems from a lack of authentication and could lead to a man-in-the-middle attack...

9.8CVSS6.7AI score0.00623EPSS
Exploits1References4
Cvelist
Cvelist
added 2025/06/20 12:0 a.m.9 views

CVE-2025-32876

An issue was discovered on COROS PACE 3 devices through 3.0808.0. The BLE implementation of the COROS smartwatch does not support LE Secure Connections and instead enforces BLE Legacy Pairing. In BLE Legacy Pairing, the Short-Term Key STK can be easily guessed. This requires knowledge of the...

0.00336EPSS
Exploits1References3
CVE
CVE
added 2025/06/20 12:0 a.m.26 views

CVE-2025-48706

The CVE-2025-48706 entry concerns COROS PACE 3 up to version 3.0808.0. Affected component: the device firmware handling Bluetooth Low Energy messages. Root cause: an out-of-bounds read in processing a crafted BLE message. Impact: when exploited, the device can reboot (availability impact) with co...

9.1CVSS6.4AI score0.00515EPSS
Exploits1References2Affected Software1
Positive Technologies
Positive Technologies
added 2025/06/20 12:0 a.m.8 views

PT-2025-26314 · Coros · Coros Pace 3

Name of the Vulnerable Software and Affected Versions: COROS PACE 3 versions through 3.0808.0 Description: An issue was discovered that allows an attacker to eavesdrop and manipulate HTTPS communication. The device does not validate the X.509 server certificate within the TLS handshake, enabling ...

9.8CVSS6AI score0.00346EPSS
Exploits1References7
Vulnrichment
Vulnrichment
added 2025/06/20 12:0 a.m.5 views

CVE-2025-32879

An issue was discovered on COROS PACE 3 devices through 3.0808.0. It starts advertising if no device is connected via Bluetooth. This allows an attacker to connect with the device via BLE if no other device is connected. While connected, none of the BLE services and characteristics of the device...

7.5AI score0.00466EPSS
Exploits1References3
Rows per page
Query Builder