PT-2018-10128 · Mimo · Mimo Baby 2

Publicado

2018-05-15

Atualizado

2019-10-03

CVE-2018-10825

CVSS v2.0

2.9

Baixa

Vetor

AV:A/AC:M/Au:N/C:N/I:P/A:N

Name of the Vulnerable Software and Affected Versions Mimo Baby 2 (affected versions not specified)

Description The issue concerns a lack of authentication and encryption in Bluetooth Low Energy (BLE) communication, allowing attackers to inject fake information about a baby's position and temperature via replay or spoofing attacks.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Missing Encryption of Sensitive Data

Improper Authentication

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-311CWE-287

Identificadores relacionados

CVE-2018-10825

Produtos afetados

Mimo Baby 2

PT-2018-10128 · Mimo · Mimo Baby 2

CVE-2018-10825

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 3