The AES key utilized in the pairing process between a lock using Sciener firmware and a wireless keypad is not unique, and can be reused to compromise other locks using the Sciener firmware.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://alephsecurity.com/2024/03/07/kontrol-lux-lock-2/ |
History
Wed, 25 Sep 2024 08:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Sciener
Sciener ttlock App |
|
CPEs | cpe:2.3:a:sciener:ttlock_app:*:*:*:*:*:*:*:* | |
Vendors & Products |
Sciener
Sciener ttlock App |
|
Metrics |
ssvc
|
Tue, 24 Sep 2024 15:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Weaknesses | CWE-323 |
Thu, 22 Aug 2024 01:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
cvssV3_1
|
MITRE
Status: PUBLISHED
Assigner: certcc
Published: 2024-03-15T17:09:14.442Z
Updated: 2024-09-24T14:42:55.921Z
Reserved: 2023-12-20T14:56:09.534Z
Link: CVE-2023-7003
Vulnrichment
Updated: 2024-08-02T08:50:08.253Z
NVD
Status : Awaiting Analysis
Published: 2024-03-15T17:15:07.630
Modified: 2024-11-21T08:45:00.443
Link: CVE-2023-7003
Redhat
No data.