The ABUS Secvest FUMO50110 hybrid module does not have any security mechanism that ensures confidentiality or integrity of RF packets that are exchanged with an alarm panel. This makes it easier to conduct wAppLoxx authentication-bypass attacks.
References
Link | Resource |
---|---|
http://packetstormsecurity.com/files/158692/ABUS-Secvest-Hybrid-Module-FUMO50110-Authentication-Bypass.html | Third Party Advisory |
http://seclists.org/fulldisclosure/2020/Jul/36 | Mailing List Third Party Advisory |
https://www.syss.de/fileadmin/dokumente/Publikationen/Advisories/SYSS-2020-015.txt | Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2020-07-30T13:13:01
Updated: 2020-07-31T21:06:15
Reserved: 2020-06-15T00:00:00
Link: CVE-2020-14158
JSON object: View
NVD Information
Status : Analyzed
Published: 2020-07-30T14:15:12.107
Modified: 2020-08-05T14:37:36.397
Link: CVE-2020-14158
JSON object: View
Redhat Information
No data.
CWE