CVE-2018-11402

EUVD-2018-3436
SimpliSafe Original has Unencrypted Keypad Transmissions, which allows physically proximate attackers to discover the PIN.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
6.6 MEDIUM
PHYSICAL
LOW
NONE
CVSS:3.0/AV:P/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 8%
Affected Products (NVD)
VendorProductVersion
simplisafeu9k-kp1000_firmware
-
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://simplisafe.com/files/pdf/SimpliSafe_advisory_8-17-18.pdf
https://www.simpleorsecure.net/simplisafe-security-advisory/
https://simplisafe.com/files/pdf/SimpliSafe_advisory_8-17-18.pdf
https://www.simpleorsecure.net/simplisafe-security-advisory/