CVE-2018-9119

{"id": "CVE-2018-9119", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 3.6, "accessVector": "LOCAL", "vectorString": "AV:L/AC:L/Au:N/C:P/I:P/A:N", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "NONE", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 4.9, "baseSeverity": "LOW", "obtainAllPrivilege": false, "exploitabilityScore": 3.9, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV30": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.0", "baseScore": 6.1, "attackVector": "PHYSICAL", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 5.2, "exploitabilityScore": 0.9}]}, "published": "2018-04-04T18:29:02.433", "references": [{"url": "https://blog.ice9.us/2018/04/stealing-credit-cards-from-fuze-bluetooth.html", "tags": ["Third Party Advisory"], "source": "cve@mitre.org"}, {"url": "https://ice9.us/advisories/ICE9-2018-001.txt", "tags": ["Third Party Advisory"], "source": "cve@mitre.org"}, {"url": "https://www.elttam.com/blog/fuzereview/#content", "source": "cve@mitre.org"}, {"url": "https://www.reddit.com/r/netsec/comments/89qrp1/stealing_credit_cards_from_fuze_via_bluetooth/", "tags": ["Issue Tracking"], "source": "cve@mitre.org"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-306"}]}], "descriptions": [{"lang": "en", "value": "An attacker with physical access to a BrilliantTS FUZE card (MCU firmware 0.1.73, BLE firmware 0.7.4) can unlock the card, extract credit card numbers, and tamper with data on the card via Bluetooth because no authentication is needed, as demonstrated by gatttool."}, {"lang": "es", "value": "Un atacante con acceso f\u00edsico a una tarjeta BrilliantTS FUZE (MCU firmware 0.1.73, BLE firmware 0.7.4) puede desbloquear la tarjeta, extraer n\u00fameros de tarjeta de cr\u00e9dito y manipular los datos de la tarjeta mediante Bluetooth, ya que no se necesita autenticaci\u00f3n, tal y como se demuestra con gatttool."}], "lastModified": "2023-08-31T23:15:21.857", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:brilliantts:fuze_card_ble_firmware:0.7.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "49008870-8A17-407B-BB7A-9255C1C37F14"}, {"criteria": "cpe:2.3:o:brilliantts:fuze_card_mcu_firmware:0.1.73:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "68174661-F161-4B27-9536-7264A1145F74"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:brilliantts:fuze_card:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "1FB55F9B-14CC-4F5D-869B-AEC81F1C220E"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "cve@mitre.org"}