PT-2026-6786 · Flycatcher Toys · Smart Pixelator 2.0

Davidrochester

Publicado

2026-02-06

Atualizado

2026-03-05

CVE-2026-2065

CVSS v3.1

8.8

Alta

Vetor

AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Flycatcher Toys smART Pixelator 2.0

Description A security flaw exists in Flycatcher Toys smART Pixelator 2.0, specifically within the Bluetooth Low Energy Interface component. A manipulation of this component results in missing authentication. This attack can only be performed from the local network. The exploit has been publicly released and may be used for malicious purposes. The vendor was informed of this issue but did not provide a response.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Missing Authentication

Improper Authentication

Missing Authorization

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-306CWE-287CWE-862

Identificadores relacionados

CVE-2026-2065

Produtos afetados

Smart Pixelator 2.0

PT-2026-6786 · Flycatcher Toys · Smart Pixelator 2.0

CVE-2026-2065

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 9