CVE-2023-48034

EPSS 0.28%
Veröffentlicht 27.11.2023 21:15:07
Zuletzt bearbeitet 21.11.2024 08:31:01
Quelle cve@mitre.org
CVE-Watchlists
Login
Unerledigt
Login

An issue discovered in Acer Wireless Keyboard SK-9662 allows attacker in physical proximity to both decrypt wireless keystrokes and inject arbitrary keystrokes via use of weak encryption.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 4

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Acer ≫ Sk-9662 Firmware Version-

Acer ≫ Sk-9662 Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.28%	0.507

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	6.1	0.9	5.2	CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

CWE-326 Inadequate Encryption Strength

The product stores or transmits sensitive data using an encryption scheme that is theoretically sound, but is not strong enough for the level of protection required.

https://github.com/aprkr/CVE-2023-48034

Third Party Advisory

https://nvd.nist.gov/vuln/detail/CVE-2023-48034

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2023-48034

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2023-48034

EUVD