Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
NVD Vulnerability Details :
CVE-2019-17098
Analyzed
More InfoOfficial Page
Source-cve-requests@bitdefender.com
View Known Exploited Vulnerability (KEV) details
Published At-30 Sep, 2020 | 13:15
Updated At-08 Oct, 2020 | 18:02

Use of hard-coded cryptographic key vulnerability in August Connect Wi-Fi Bridge App, Connect Firmware allows an attacker to decrypt an intercepted payload containing the Wi-Fi network authentication credentials. This issue affects: August Connect Wi-Fi Bridge App version v10.11.0 and prior versions on Android. August Connect Firmware version 2.2.12 and prior versions.

CISA Catalog
Date AddedDue DateVulnerability NameRequired Action
N/A
Metrics
TypeVersionBase scoreBase severityVector
Primary3.16.5MEDIUM
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Secondary3.13.5LOW
CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N
Primary2.03.3LOW
AV:A/AC:L/Au:N/C:P/I:N/A:N
CPE Matches
august
august
>>august_home>>Versions up to 10.11.0(inclusive)
cpe:2.3:a:august:august_home:*:*:*:*:*:android:*:*
august
august
>>connect_wi-fi_bridge_firmware>>Versions up to 2.2.12(inclusive)
cpe:2.3:o:august:connect_wi-fi_bridge_firmware:*:*:*:*:*:*:*:*
august
august
>>connect_wi-fi_bridge>>-
cpe:2.3:h:august:connect_wi-fi_bridge:-:*:*:*:*:*:*:*
Weaknesses
CWE IDTypeSource
CWE-798Primarynvd@nist.gov
CWE-321Secondarycve-requests@bitdefender.com
Evaluator Description
Evaluator Impact

Evaluator Solution

Vendor Statements
References
HyperlinkSourceResource
https://labs.bitdefender.com/2020/08/smart-locks-not-so-smart-with-wi-fi-security/cve-requests@bitdefender.com
Third Party Advisory
Change History
0Changes found
Details not found