The OKLOK (3.1.1) mobile companion app for Fingerprint Bluetooth Padlock FB50 (2.3) has weak password requirements combined with improper restriction of excessive authentication attempts, which could allow a remote attacker to discover user credentials and obtain access via a brute force attack.
References
Link | Resource |
---|---|
https://github.com/fierceoj/ownklok | Exploit Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2020-05-04T13:18:57
Updated: 2020-05-04T13:18:57
Reserved: 2020-02-07T00:00:00
Link: CVE-2020-8790
JSON object: View
NVD Information
Status : Analyzed
Published: 2020-05-04T14:15:13.467
Modified: 2021-07-21T11:39:23.747
Link: CVE-2020-8790
JSON object: View
Redhat Information
No data.