CVE-2021-40170

Name of the Vulnerable Software and Affected Versions SecuritasHome home alarm system version HPGW-G 0.0.2.23F BG U-ITR-F1-BD BL.A30.20181117

Description The issue allows an attacker to trigger arbitrary system functionality by replaying previously recorded signals, enabling an adversary to disarm an armed system among other actions.

Recommendations For version HPGW-G 0.0.2.23F BG U-ITR-F1-BD BL.A30.20181117, consider implementing signal authentication or encryption to prevent replay attacks, and restrict access to the system's RF signal reception to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.