Lucene search

PRIOn knowledge basePRION:CVE-2021-35952

HistoryDec 26, 2022 - 6:15 a.m.

Code injection

2022-12-2606:15:00

PRIOn knowledge base

www.prio-n.com

fastrack reflex 2.0

w307s_reflex_v90.89

code injection

bluetooth le characteristics

remote attacker

change time

date

month

nvd

5.4 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

49.3%

JSON

fastrack Reflex 2.0 W307S_REFLEX_v90.89 Activity Tracker allows a Remote attacker to change the time, date, and month via Bluetooth LE Characteristics on handle 0x0017.

CPENameOperatorVersion
reflex_2.0_firmwareeq90.89

CPE	Name	Operator	Version
	reflex_2.0_firmware	eq	90.89

References

payatu.com/advisory/lack-of-bluetooth-le-pairing-fastrack-reflex

www.fastrack.in/shop/watch-smart-wearables-reflex-2