CVE-2023-7009

Summary

Some Sciener-based locks support plaintext message processing over Bluetooth Low Energy, allowing unencrypted malicious commands to be passed to the lock. These malicious commands, less then 16 bytes in length, will be processed by the lock as if they were encrypted communications. This can be further exploited by an attacker to compromise the lock's integrity.

Affected Software

VendorProductVersion RangeStatus
ScienerKontrol Lux6.5.x <= 6.5.07affected

Weaknesses

  • CWE-311 Missing Encryption of Sensitive Data
  • CWE-319 Cleartext Transmission of Sensitive Information

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: poc
    • Automatable: yes
    • Technical Impact: partial

CVE Program Container

Additional References

References