CVE-2023-7009

Name of the Vulnerable Software and Affected Versions Sciener-based locks (affected versions not specified)

Description The issue allows unencrypted malicious commands to be passed to the lock over Bluetooth Low Energy, as some Sciener-based locks support plaintext message processing. These malicious commands, less than 16 bytes in length, are processed by the lock as if they were encrypted communications, potentially compromising the lock's integrity.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.