Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

RedhatCVE
RedhatCVEadded 2025/05/23 2:13 a.m.9 views

CVE-2023-7009

Some Sciener-based locks support plaintext message processing over Bluetooth Low Energy, allowing unencrypted malicious commands to be passed to the lock. These malicious commands, less then 16 bytes in length, will be processed by the lock as if they were encrypted communications. This can be...

8.2CVSS7.1AI score0.0004EPSS
Exploits0References1
NVD
NVDadded 2024/03/15 5:15 p.m.7 views

CVE-2023-7017

Sciener locks' firmware update mechanism do not authenticate or validate firmware updates if passed to the lock through the Bluetooth Low Energy service. A challenge request can be sent to the lock with a command to prepare for an update, rather than an unlock request, allowing an attacker to...

9.8CVSS6.8AI score0.00082EPSS
Exploits0References2
Cvelist
Cvelistadded 2024/03/15 5:7 p.m.10 views

CVE-2023-7017 CVE-2023-7017

Sciener locks' firmware update mechanism do not authenticate or validate firmware updates if passed to the lock through the Bluetooth Low Energy service. A challenge request can be sent to the lock with a command to prepare for an update, rather than an unlock request, allowing an attacker to...

7AI score0.00082EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2024/03/15 5:7 p.m.10 views

CVE-2023-7017 CVE-2023-7017

Sciener locks' firmware update mechanism do not authenticate or validate firmware updates if passed to the lock through the Bluetooth Low Energy service. A challenge request can be sent to the lock with a command to prepare for an update, rather than an unlock request, allowing an attacker to...

9.5AI score0.00082EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2024/03/15 12:0 a.m.4 views

PT-2024-15176 · Unknown · Sciener-Based Locks

Name of the Vulnerable Software and Affected Versions: Sciener-based locks affected versions not specified Description: The issue allows unencrypted malicious commands to be passed to the lock over Bluetooth Low Energy, as some Sciener-based locks support plaintext message processing. These...

8.2CVSS7.1AI score0.0004EPSS
Exploits0References6
CNNVD
CNNVDadded 2024/03/15 12:0 a.m.2 views

Sciener-based locks Security Vulnerabilities

Sciener is a smart lock firmware from Sciener. A security vulnerability exists in Sciener-based locks that stems from support for plaintext message processing, allowing an attacker to pass unencrypted malicious commands to the lock...

8.2CVSS6.9AI score0.0004EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2024/03/15 12:0 a.m.2 views

PT-2024-15180 · Unknown · Sciener Locks

Name of the Vulnerable Software and Affected Versions: Sciener locks affected versions not specified Description: The firmware update mechanism of the locks does not authenticate or validate firmware updates when they are passed through the Bluetooth Low Energy service. An attacker can send a...

9.8CVSS7.1AI score0.00082EPSS
Exploits0References7
CNNVD
CNNVDadded 2024/03/15 12:0 a.m.3 views

Sciener locks firmware security vulnerability

Sciener is a smart lock firmware from Sciener. A security vulnerability exists in the Sciener locks firmware, which stems from the fact that the firmware update mechanism does not validate the firmware update request if the firmware update is passed to the lock via the Bluetooth Low Energy servic...

9.8CVSS6.8AI score0.00082EPSS
Exploits0References2
Rows per page
Query Builder