CVE-2022-32506

Name of the Vulnerable Software and Affected Versions Nuki Smart Lock 3.0 versions 3.0 through 3.3.4 Nuki Smart Lock 2.0 versions 2.0 through 2.12.3 Nuki Bridge v1 versions 1.0 through 1.21.9 Nuki Bridge v2 versions 2.0 through 2.13.1

Description An issue was discovered on certain Nuki Home Solutions devices. An attacker with physical access to the circuit board could use the SWD debug features to control the execution of code on the processor and debug the firmware, as well as read or alter the content of the internal and external flash memory.

Recommendations For Nuki Smart Lock 3.0 versions 3.0 through 3.3.4, update to version 3.3.5 or later. For Nuki Smart Lock 2.0 versions 2.0 through 2.12.3, update to version 2.12.4 or later. For Nuki Bridge v1 versions 1.0 through 1.21.9, update to version 1.22.0 or later. For Nuki Bridge v2 versions 2.0 through 2.13.1, update to version 2.13.2 or later.