PT-2018-10128 · Mimo · Mimo Baby 2

Published

2018-05-15

Updated

2019-10-03

CVE-2018-10825

CVSS v2.0

2.9

Low

Vector

AV:A/AC:M/Au:N/C:N/I:P/A:N

Name of the Vulnerable Software and Affected Versions Mimo Baby 2 (affected versions not specified)

Description The issue concerns a lack of authentication and encryption in Bluetooth Low Energy (BLE) communication, allowing attackers to inject fake information about a baby's position and temperature via replay or spoofing attacks.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Missing Encryption of Sensitive Data

Improper Authentication

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-311CWE-287

Related Identifiers

CVE-2018-10825

Affected Products

Mimo Baby 2

PT-2018-10128 · Mimo · Mimo Baby 2

CVE-2018-10825

Weakness Enumeration

Related Identifiers

Affected Products

References · 3