CVE-2019-9659

Name of the Vulnerable Software and Affected Versions Chuango 433 MHz burglar-alarm product line (affected versions not specified) Eminent EM8617 OV2 Wifi Alarm System (affected versions not specified)

Description The issue concerns the use of static codes in the RF remote control of the affected products, allowing an attacker to perform unauthorized actions such as arming, disarming, or triggering the alarm remotely through replay attacks.

Recommendations For the Chuango 433 MHz burglar-alarm product line, consider implementing a code-hopping or rolling code mechanism to prevent replay attacks until a patch is available. For the Eminent EM8617 OV2 Wifi Alarm System, restrict access to the alarm system's remote control functionality to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.