The API on Fisher-Price Smart Toy Bear devices allows remote attackers to obtain sensitive information or modify data by leveraging presence in an 802.11 network's coverage area and entering an account number.
References
Link | Resource |
---|---|
https://community.rapid7.com/community/infosec/blog/2016/02/02/security-vulnerabilities-within-fisher-price-smart-toy-hereo-gps-platform | |
https://www.kb.cert.org/vuls/id/719736 | US Government Resource |
https://www.kb.cert.org/vuls/id/GWAN-A6LPPW | US Government Resource |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: certcc
Published: 2016-02-04T11:00:00
Updated: 2016-02-04T06:57:01
Reserved: 2015-11-19T00:00:00
Link: CVE-2015-8269
JSON object: View
NVD Information
Status : Analyzed
Published: 2016-02-04T11:59:00.113
Modified: 2016-02-24T11:34:58.163
Link: CVE-2015-8269
JSON object: View
Redhat Information
No data.
CWE