CVE-2024-40892

Name of the Vulnerable Software and Affected Versions Firewalla Box Software versions prior to 1.979

Description A weak credential issue exists, allowing a physically close attacker to use the license UUID for authentication and provision SSH credentials over the Bluetooth Low-Energy (BTLE) interface. Once an attacker gains access to the LAN, they could log into the SSH interface using the provisioned credentials. The license UUID can be acquired through plain-text Bluetooth sniffing, reading the QR code on the bottom of the device, or brute-forcing the UUID.

Recommendations For versions prior to 1.979, update to version 1.979 or later to resolve the issue. As a temporary workaround, consider disabling the Bluetooth Low-Energy (BTLE) interface until a patch is available. Restrict access to the SSH interface to minimize the risk of exploitation. Avoid using the provisioned SSH credentials in the affected interface until the issue is resolved.