CVE-2019-3997

Summary

Authentication bypass using an alternate path or channel in SimpliSafe SS3 firmware 1.0-1.3 allows a local, unauthenticated attacker to pair a rogue keypad to an armed system.

Affected Software

VendorProductVersion RangeStatus
n/aSimpliSafe SS31.0-1.3affected

Weaknesses

  • Unauthenticated Keypad Pairing Vulnerability

ADP Enrichment

CVE Program Container

Additional References

References