CVE-2021-35952

2022-12-2600:00:00

mitre

www.cve.org

fastrack reflex 2.0

w307s_reflex_v90.89

activity tracker

remote attacker

bluetooth le characteristics

handle 0x0017

5.6 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

49.3%

JSON

fastrack Reflex 2.0 W307S_REFLEX_v90.89 Activity Tracker allows a Remote attacker to change the time, date, and month via Bluetooth LE Characteristics on handle 0x0017.

References

payatu.com/advisory/lack-of-bluetooth-le-pairing-fastrack-reflex

www.fastrack.in/shop/watch-smart-wearables-reflex-2