PT-2026-56281 · Undefined · Undefined

Embdcdachyd

·

Published

2026-07-07

·

Updated

2026-07-07

·

CVE-2026-37271

None

No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.
Fire-Boltt Smartwatch FB BGS001 Firmware: MOY-JS14-2.0.4 is vulnerable to Improper Authentication, The device accepts GATT Write Request commands without sufficient authentication or strong session validation. Under specific conditions, previously captured BLE packets can be replayed from a nearby device to trigger functionality on the smartwatch.

Exploit

Found an issue in the description? Have something to add? Feel free to write us 👾

Related Identifiers

CVE-2026-37271

Affected Products

Undefined