CVE-2023-39841

CVSS 3.1 Score 4.6 of 10 (medium)

Details

Published Aug 15, 2023
Updated: Aug 22, 2023
CWE ID 311

Summary

CVE-2023-39841 is a cybersecurity vulnerability affecting the Etekcity 3-in-1 Smart Door Lock v1.0. This issue stems from the lack of encryption in the RFID tag, enabling attackers to create cloned tags by coming into close proximity with the original device. The absence of encryption leaves the door lock susceptible to unauthorized access, posing a significant security risk. Attackers can exploit this vulnerability to bypass the lock's security measures and gain entry, compromising the privacy and safety of the affected users. To mitigate this threat, users are advised to update their door locks to a version with improved encryption or consider replacing their current device with a more secure alternative.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share