Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
Vulnerability Details :

CVE-2023-6951

Summary
Assigner-Nozomi
Assigner Org ID-bec8025f-a851-46e5-b3a3-058e6b0aa23c
Published At-02 Apr, 2024 | 10:28
Updated At-30 Sep, 2024 | 10:04
Rejected At-
Credits

A Use of Weak Credentials vulnerability affecting the Wi-Fi network generated by a set of DJI drones could allow a remote attacker to derive the WPA2 PSK key and authenticate without permission to the drone’s Wi- Fi network. This, in turn, allows the attacker to perform unauthorized interaction with the network services exposed by the drone and to potentially decrypt the Wi-Fi traffic exchanged between the drone and the Android/IOS device of the legitimate user during QuickTransfer mode. Affected models are Mavic 3 Pro until v01.01.0300, Mavic 3 until v01.00.1200, Mavic 3 Classic until v01.00.0500, Mavic 3 Enterprise until v07.01.10.03, Matrice 300 until v57.00.01.00, Matrice M30 until v07.01.0022 and Mini 3 Pro until v01.00.0620.

Vendors
-
Not available
Products
-
Metrics (CVSS)
VersionBase scoreBase severityVector
Weaknesses
Attack Patterns
Solution/Workaround
References
HyperlinkResource Type
EPSS History
Score
Latest Score
-
N/A
No data available for selected date range
Percentile
Latest Percentile
-
N/A
No data available for selected date range
Stakeholder-Specific Vulnerability Categorization (SSVC)
▼Common Vulnerabilities and Exposures (CVE)
cve.org
Assigner:Nozomi
Assigner Org ID:bec8025f-a851-46e5-b3a3-058e6b0aa23c
Published At:02 Apr, 2024 | 10:28
Updated At:30 Sep, 2024 | 10:04
Rejected At:
▼CVE Numbering Authority (CNA)

A Use of Weak Credentials vulnerability affecting the Wi-Fi network generated by a set of DJI drones could allow a remote attacker to derive the WPA2 PSK key and authenticate without permission to the drone’s Wi- Fi network. This, in turn, allows the attacker to perform unauthorized interaction with the network services exposed by the drone and to potentially decrypt the Wi-Fi traffic exchanged between the drone and the Android/IOS device of the legitimate user during QuickTransfer mode. Affected models are Mavic 3 Pro until v01.01.0300, Mavic 3 until v01.00.1200, Mavic 3 Classic until v01.00.0500, Mavic 3 Enterprise until v07.01.10.03, Matrice 300 until v57.00.01.00, Matrice M30 until v07.01.0022 and Mini 3 Pro until v01.00.0620.

Affected Products
Vendor
DJI
Product
Mavic 3 Pro
Default Status
unaffected
Versions
Affected
  • From 0 before 01.01.0300 (custom)
Vendor
DJI
Product
Mavic 3
Default Status
unaffected
Versions
Affected
  • From 0 before 01.00.1200 (custom)
Vendor
DJI
Product
Mavic 3 Classic
Default Status
unaffected
Versions
Affected
  • From 0 before 01.00.0500 (custom)
Vendor
DJI
Product
Mavic 3 Enterprise
Default Status
unaffected
Versions
Affected
  • From 0 before 7.01.10.03 (custom)
Vendor
DJI
Product
Matrice 300
Default Status
unaffected
Versions
Affected
  • From 0 before 57.00.01.00 (custom)
Vendor
DJI
Product
Matrice M30
Default Status
unaffected
Versions
Affected
  • From 0 before 07.01.0022 (custom)
Vendor
DJI
Product
Mini 3 Pro
Default Status
unaffected
Versions
Affected
  • From 0 before 01.00.0620 (custom)
Problem Types
TypeCWE IDDescription
CWECWE-334CWE-334: Small Space of Random Values
Type: CWE
CWE ID: CWE-334
Description: CWE-334: Small Space of Random Values
Metrics
VersionBase scoreBase severityVector
3.16.6MEDIUM
CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N
Version: 3.1
Base score: 6.6
Base severity: MEDIUM
Vector:
CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
finder
Nicolo' Facchi of Nozomi Networks
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
https://www.nozominetworks.com/labs/vulnerability-advisories-cve-2023-6951/
N/A
Hyperlink: https://www.nozominetworks.com/labs/vulnerability-advisories-cve-2023-6951/
Resource: N/A
▼Authorized Data Publishers (ADP)
1. CISA ADP Vulnrichment
Affected Products
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
2. CVE Program Container
Affected Products
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
https://www.nozominetworks.com/labs/vulnerability-advisories-cve-2023-6951/
x_transferred
Hyperlink: https://www.nozominetworks.com/labs/vulnerability-advisories-cve-2023-6951/
Resource:
x_transferred
Information is not available yet
▼National Vulnerability Database (NVD)
nvd.nist.gov
Source:prodsec@nozominetworks.com
Published At:02 Apr, 2024 | 11:15
Updated At:02 Apr, 2024 | 12:50

A Use of Weak Credentials vulnerability affecting the Wi-Fi network generated by a set of DJI drones could allow a remote attacker to derive the WPA2 PSK key and authenticate without permission to the drone’s Wi- Fi network. This, in turn, allows the attacker to perform unauthorized interaction with the network services exposed by the drone and to potentially decrypt the Wi-Fi traffic exchanged between the drone and the Android/IOS device of the legitimate user during QuickTransfer mode. Affected models are Mavic 3 Pro until v01.01.0300, Mavic 3 until v01.00.1200, Mavic 3 Classic until v01.00.0500, Mavic 3 Enterprise until v07.01.10.03, Matrice 300 until v57.00.01.00, Matrice M30 until v07.01.0022 and Mini 3 Pro until v01.00.0620.

CISA Catalog
Date AddedDue DateVulnerability NameRequired Action
N/A
Date Added: N/A
Due Date: N/A
Vulnerability Name: N/A
Required Action: N/A
Metrics
TypeVersionBase scoreBase severityVector
Secondary3.16.6MEDIUM
CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N
Type: Secondary
Version: 3.1
Base score: 6.6
Base severity: MEDIUM
Vector:
CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N
CPE Matches
Weaknesses
CWE IDTypeSource
CWE-1391Secondaryprodsec@nozominetworks.com
CWE ID: CWE-1391
Type: Secondary
Source: prodsec@nozominetworks.com
Evaluator Description
Evaluator Impact

Evaluator Solution

Vendor Statements
References
HyperlinkSourceResource
https://www.nozominetworks.com/labs/vulnerability-advisories-cve-2023-6951/prodsec@nozominetworks.com
N/A
Hyperlink: https://www.nozominetworks.com/labs/vulnerability-advisories-cve-2023-6951/
Source: prodsec@nozominetworks.com
Resource: N/A

Change History

0
Information is not available yet

Similar CVEs

0Records found
Details not found