2 matches found
CVE-2023-7005 CVE-2023-7005
A specially crafted message can be sent to the TTLock App that downgrades the encryption protocol used for communication, and can be utilized to compromise the lock, such as through revealing the unlockKey field...
CVE-2023-7005
CVE-2023-7005 affects the TTLock ecosystem (TTLock App and Sciener firmware components) with a flaw where a specially crafted message to the TTLock App downgrades the cryptographic protocol used for communication and can disclose the unlockKey. The vulnerability is tied to how the app/lock pairin...