CVE-2022-46480

Exploit

EPSS 0.11%
Veröffentlicht 05.12.2023 00:15:07
Zuletzt bearbeitet 21.11.2024 07:30:37
Quelle cve@mitre.org
CVE-Watchlists
Login
Unerledigt
Login

Incorrect Session Management and Credential Re-use in the Bluetooth LE stack of the Ultraloq UL3 2nd Gen Smart Lock Firmware 02.27.0012 allows an attacker to sniff the unlock code and unlock the device whilst within Bluetooth range.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 2 Referenzen 5

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

U-tec ≫ Ultraloq Ul3 Bt Firmware Version02.27.0012

U-tec ≫ Ultraloq Ul3 Bt Version2nd_gen

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.11%	0.298

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	8.1	2.8	5.2	CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

CWE-294 Authentication Bypass by Capture-replay

A capture-replay flaw exists when the design of the product makes it possible for a malicious user to sniff network traffic and bypass authentication by replaying it to the server in question to the same effect as the original message (or with minor changes).

CWE-384 Session Fixation

Authenticating a user, or otherwise establishing a new user session, without invalidating any existing session identifier gives an attacker the opportunity to steal authenticated sessions.

https://arxiv.org/abs/2312.00021

https://www.researchgate.net/publication/375759408_Technical_Report_-_CVE-2022-46480_CVE-2023-26941_CVE-2023-26942_and_CVE-2023-26943#fullTextFileContent

Third Party Advisory

Exploit

Technical Description

https://nvd.nist.gov/vuln/detail/CVE-2022-46480

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2022-46480

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2022-46480

EUVD