CVE-2023-50126

Name of the Vulnerable Software and Affected Versions Hozard alarm system (Alarmsysteem) version 1.0

Description The issue is related to missing encryption in the RFID tags of the Hozard alarm system, which allows attackers to create a cloned tag via brief physical proximity to one of the original tags. This results in an attacker being able to bring the alarm system to a disarmed state.

Recommendations For version 1.0, consider implementing encryption for the RFID tags to prevent cloning and unauthorized access. As a temporary workaround, restrict physical proximity to the original tags to minimize the risk of exploitation.