Lucene search

MitreCVE-2023-49914

HistoryDec 02, 2023 - 1:15 a.m.

CVE-2023-49914

2023-12-0201:15:09

mitre

web.nvd.nist.gov

cve-2023-49914

interaxon muse 2

denial of service

brain-hack attack

nvd

CVSS3

6.5

Attack Vector

ADJACENT

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

AI Score

6.5

Confidence

High

EPSS

0.001

Percentile

31.0%

JSON

InteraXon Muse 2 devices allow remote attackers to cause a denial of service (incorrect Muse App report of an outstanding, calm meditation state) via a 480 MHz RF carrier that is modulated by a “false” brain wave, aka a Brain-Hack attack. For example, the Muse App does not display the reception of a strong RF carrier, and alert the user that a report may be misleading if this carrier has been modulated by a low-frequency signal.

Affected configurations

Nvd

Node

choosemusemuse_2_firmwareMatch-

AND

choosemusemuse_2Match-

VendorProductVersionCPE
choosemusemuse_2_firmware-cpe:2.3:o:choosemuse:muse_2_firmware:-:*:*:*:*:*:*:*
choosemusemuse_2-cpe:2.3:h:choosemuse:muse_2:-:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
choosemuse	muse_2_firmware	-	cpe:2.3:o:choosemuse:muse_2_firmware:-:::::::*
choosemuse	muse_2	-	cpe:2.3:h:choosemuse:muse_2:-:::::::*

References

dl.acm.org/doi/10.1145/3605758.3623497

scholar.google.com/citations?view_op=view_citation&hl=en&user=8hu27apy8A4C&citation_for_view=8hu27apy8A4C:Se3iqnhoufwC

CVSS3

6.5

Attack Vector

ADJACENT

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

AI Score

6.5

Confidence

High

EPSS

0.001

Percentile

31.0%

JSON

Related for CVE-2023-49914