PT-2018-14284 · Telecrane · Telecrane F25 Series Radio Controls
Akira Urano
+6
·
Publicado
2018-10-24
·
Atualizado
2020-09-18
·
CVE-2018-17935
CVSS v3.1
8.1
Alta
| Vetor | AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Telecrane F25 Series Radio Controls versions prior to 00.0A
Description
The issue concerns the use of fixed codes in the Telecrane F25 Series Radio Controls, which can be reproduced by sniffing and re-transmission. This allows for unauthorized replay of a command, spoofing of an arbitrary message, or keeping the controlled load in a permanent "stop" state.
Recommendations
For versions prior to 00.0A, update to version 00.0A or later to resolve the issue.
Correção
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Telecrane F25 Series Radio Controls