Design/Logic Flaw

2022-12-2606:15:00

PRIOn knowledge base

www.prio-n.com

fastraclk reflex 2.0

swd feature

firmware vulnerability

8 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

23.4%

JSON

fastrack Reflex 2.0 W307S_REFLEX_v90.89 Activity Tracker allows physically proximate attackers to dump the firmware, flash custom malicious firmware, and brick the device via the Serial Wire Debug (SWD) feature.

CPENameOperatorVersion
reflex_2.0_firmwareeq90.89

CPE	Name	Operator	Version
	reflex_2.0_firmware	eq	90.89

References

payatu.com/advisory/dumping-and-re-flashing-firmware-fastrack-reflex

www.fastrack.in/shop/watch-smart-wearables-reflex-2