34 matches found
EUVD-2023-59199
Malicious code in bioql PyPI...
CVE-2023-7003
The AES key utilized in the pairing process between a lock using Sciener firmware and a wireless keypad is not unique, and can be reused to compromise other locks using the Sciener firmware...
CVE-2023-7009
Some Sciener-based locks support plaintext message processing over Bluetooth Low Energy, allowing unencrypted malicious commands to be passed to the lock. These malicious commands, less then 16 bytes in length, will be processed by the lock as if they were encrypted communications. This can be...
CVE-2023-7006
The unlockKey character in a lock using Sciener firmware can be brute forced through repeated challenge requests, compromising the locks integrity...
CVE-2023-7007
Sciener server does not validate connection requests from the GatewayG2, allowing an impersonation attack that provides the attacker the unlockKey field...
CVE-2023-7003
The AES key utilized in the pairing process between a lock using Sciener firmware and a wireless keypad is not unique, and can be reused to compromise other locks using the Sciener firmware...
CVE-2023-7017
Sciener locks' firmware update mechanism do not authenticate or validate firmware updates if passed to the lock through the Bluetooth Low Energy service. A challenge request can be sent to the lock with a command to prepare for an update, rather than an unlock request, allowing an attacker to...
CVE-2023-7003 CVE-2023-7003
The AES key utilized in the pairing process between a lock using Sciener firmware and a wireless keypad is not unique, and can be reused to compromise other locks using the Sciener firmware...
CVE-2023-7003
The CVE-2023-7003 issue affects Sciener firmware-based locks where the AES key used in pairing with a wireless keypad is not unique, enabling the key to be reused across other Sciener locks and potentially compromising their security. Publicly documented sources (NVD/Red Hat/ CERT-family entries ...
CVE-2023-7003 CVE-2023-7003
The AES key utilized in the pairing process between a lock using Sciener firmware and a wireless keypad is not unique, and can be reused to compromise other locks using the Sciener firmware...
CVE-2023-7007
CVE-2023-7007 affects Sciener server behavior where connection requests from GatewayG2 are not validated, enabling impersonation and potential access to the unlockKey field. The vulnerability is triggered by an attacker who can pose as GatewayG2 to established connections, potentially facilitatin...
CVE-2023-7007 CVE-2023-7007
Sciener server does not validate connection requests from the GatewayG2, allowing an impersonation attack that provides the attacker the unlockKey field...
CVE-2023-7007 CVE-2023-7007
Sciener server does not validate connection requests from the GatewayG2, allowing an impersonation attack that provides the attacker the unlockKey field...
CVE-2023-7006 CVE-2023-7006
The unlockKey character in a lock using Sciener firmware can be brute forced through repeated challenge requests, compromising the locks integrity...
CVE-2023-7006
CVE-2023-7006 affects Sciener firmware used by Kontrol Lux locks (firmware 6.5.x to 6.5.07), Gateway G2 (6.0.0) and TTLock App (6.4.5). The unlockKey can be brute-forced via repeated challenge requests, compromising lock integrity. The description and connected reports confirm a brute-force vulne...
CVE-2023-7006 CVE-2023-7006
The unlockKey character in a lock using Sciener firmware can be brute forced through repeated challenge requests, compromising the locks integrity...
CVE-2023-7009 CVE-2023-7009
Some Sciener-based locks support plaintext message processing over Bluetooth Low Energy, allowing unencrypted malicious commands to be passed to the lock. These malicious commands, less then 16 bytes in length, will be processed by the lock as if they were encrypted communications. This can be...
CVE-2023-7009 CVE-2023-7009
Some Sciener-based locks support plaintext message processing over Bluetooth Low Energy, allowing unencrypted malicious commands to be passed to the lock. These malicious commands, less then 16 bytes in length, will be processed by the lock as if they were encrypted communications. This can be...
CVE-2023-7009
CVE-2023-7009 affects Sciener-based locks where plaintext BLE messages are processed as encrypted communications. The issue allows unencrypted commands (less than 16 bytes) to be treated as valid encrypted traffic, potentially compromising lock integrity. Connected sources identify affected compo...
CVE-2023-7017
CVE-2023-7017 affects Sciener locks with BLE-based firmware updates. The vulnerability is that the firmware update mechanism does not authenticate or validate updates delivered via Bluetooth Low Energy, enabling a challenge request to be sent to the lock to prepare for an update (instead of an un...