PT-2022-20006 · Unknown · Mck Smartlock
Kevin2600
·
Published
2022-05-18
·
Updated
2022-05-26
·
CVE-2022-30111
CVSS v3.1
6.8
Medium
| Vector | AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
MCK Smartlock version 1.0
Description
The issue is related to the use of an insecure algorithm for rolling codes, which allows attackers to unlock the mechanism via replay attacks.
Recommendations
For MCK Smartlock version 1.0, consider disabling the rolling code feature until a secure algorithm is implemented to prevent replay attacks.
Exploit
Fix
Use of a Broken Cryptographic Algorithm
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Mck Smartlock