Lucene search
K

12 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 1:7 a.m.4 views

CVE-2022-46480

Incorrect Session Management and Credential Re-use in the Bluetooth LE stack of the Ultraloq UL3 2nd Gen Smart Lock Firmware 02.27.0012 allows an attacker to sniff the unlock code and unlock the device whilst within Bluetooth range...

8.1CVSS7.1AI score0.00466EPSS
Exploits2References1
BDU FSTEC
BDU FSTEC
added 2023/12/22 12:0 a.m.7 views

The vulnerability of the Bluetooth LE component of the microprogramming software for biometric locks, Ultraloq UL3 2nd Gen Smart Lock, allows a intruder to disclose the protected information.

The vulnerability of the Bluetooth LE component of the microprogrammed biometric lock Ultraloq UL3 2nd Gen Smart Lock is related to session management errors. Exploiting this vulnerability could allow a remote attacker to disclose the protected information...

8.1CVSS6.8AI score0.00466EPSS
Exploits2References4Affected Software1
NVD
NVD
added 2023/12/05 12:15 a.m.17 views

CVE-2022-46480

Incorrect Session Management and Credential Re-use in the Bluetooth LE stack of the Ultraloq UL3 2nd Gen Smart Lock Firmware 02.27.0012 allows an attacker to sniff the unlock code and unlock the device whilst within Bluetooth range...

8.1CVSS0.00466EPSS
Exploits2References2
OSV
OSV
added 2023/12/05 12:15 a.m.5 views

CVE-2022-46480

Incorrect Session Management and Credential Re-use in the Bluetooth LE stack of the Ultraloq UL3 2nd Gen Smart Lock Firmware 02.27.0012 allows an attacker to sniff the unlock code and unlock the device whilst within Bluetooth range...

8.1CVSS5.8AI score0.00466EPSS
Exploits4References2
Prion
Prion
added 2023/12/05 12:15 a.m.28 views

Session fixation

Incorrect Session Management and Credential Re-use in the Bluetooth LE stack of the Ultraloq UL3 2nd Gen Smart Lock Firmware 02.27.0012 allows an attacker to sniff the unlock code and unlock the device whilst within Bluetooth range...

4.8CVSS7.3AI score0.00466EPSS
Exploits4References2Affected Software1
Cvelist
Cvelist
added 2023/12/04 12:0 a.m.25 views

CVE-2022-46480

Incorrect Session Management and Credential Re-use in the Bluetooth LE stack of the Ultraloq UL3 2nd Gen Smart Lock Firmware 02.27.0012 allows an attacker to sniff the unlock code and unlock the device whilst within Bluetooth range...

8.3AI score0.00466EPSS
Exploits4References2
CVE
CVE
added 2023/12/04 12:0 a.m.68 views

CVE-2022-46480

Technical details for CVE-2022-46480 are not provided in the supplied documents; no affected products, root cause, or remediation are disclosed here. Monitor for updates.

8.1CVSS8AI score0.00466EPSS
Exploits4References2Affected Software1
CNNVD
CNNVD
added 2023/12/04 12:0 a.m.6 views

U-tec Ultraloq UL3 Security Breach

The U-tec Ultraloq UL3 is a series of smart door locks from U-tec. A security vulnerability exists in the U-tec Ultraloq UL3 version 02.27.0012, which stems from a session mismanagement and credential reuse issue in the stack, allowing an attacker to sniff the unlock code and unlock the device...

8.1CVSS7AI score0.00466EPSS
Exploits2References2
Positive Technologies
Positive Technologies
added 2022/05/12 12:0 a.m.3 views

PT-2022-7195 · Ultraloq · Ultraloq Ul3 2Nd Gen Smart Lock

Name of the Vulnerable Software and Affected Versions: Ultraloq UL3 2nd Gen Smart Lock Firmware version 02.27.0012 Description: The issue is related to incorrect session management and credential re-use in the Bluetooth LE stack, allowing an attacker to sniff the unlock code and unlock the device...

8.1CVSS6.4AI score0.00466EPSS
Exploits4References9
Schneier on Security
Schneier on Security
added 2020/08/10 11:23 a.m.21 views

Smart Lock Vulnerability

Yet another Internet-connected door lock is insecure: Sold by retailers including Amazon, Walmart, and Home Depot, U-Tec's $139.99 UltraLoq is marketed as a "secure and versatile smart deadbolt that offers keyless entry via your Bluetooth-enabled smartphone and code." Users can share temporary...

0.6AI score
Exploits0
ThreatPost
ThreatPost
added 2019/06/27 9:50 p.m.391 views

Smart Lock Turns Out to be Not So Smart, or Secure

Researchers are warning a keyless smart door lock made by U-tec, called Ultraloq, could allow attackers to track down where the device is being used and easily pick the lock – either virtually or physically. Ultraloq is a Bluetooth fingerprint and touchscreen door lock sold for about $200. It...

Exploits0References4
Pen Test Partners Blog
Pen Test Partners Blog
added 2019/06/27 9:28 a.m.230 views

The not so ultra lock

This post couldn't have been written without @evstykas and @cybergibbons. I became aware of the Ultraloq from U-tec a few months ago. For a room door lock it has a range of what look like really good features: Ultraloq UL3 smart lever lock is designed to be "Real Keyless". You are free to use...

7.1AI score
Exploits0
Rows per page
Query Builder