Vulnerability Description
The Eques elf smart plug and the mobile app use a hardcoded AES 256 bit key to encrypt the commands and responses between the device and the app. The communication happens over UDP port 27431. An attacker on the local network can use the same key to encrypt and send commands to discover all smart plugs in a network, take over control of a device, and perform actions such as turning it on and off.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Equeshome | Elf Smart Plug Firmware | - |
| Equeshome | Elf Smart Plug | - |
Related Weaknesses (CWE)
References
- https://github.com/iamckn/equesExploitThird Party Advisory
- https://www.ckn.io/blog/2019/08/27/exploiting-the-eques-elf-smart-plug-part-fourExploitThird Party Advisory
- https://www.ckn.io/blog/2019/08/27/exploiting-the-eques-elf-smart-plug-part-one/ExploitThird Party Advisory
- https://www.ckn.io/blog/2019/08/27/exploiting-the-eques-elf-smart-plug-part-threExploitThird Party Advisory
- https://www.ckn.io/blog/2019/08/27/exploiting-the-eques-elf-smart-plug-part-two/ExploitThird Party Advisory
- https://github.com/iamckn/equesExploitThird Party Advisory
- https://www.ckn.io/blog/2019/08/27/exploiting-the-eques-elf-smart-plug-part-fourExploitThird Party Advisory
- https://www.ckn.io/blog/2019/08/27/exploiting-the-eques-elf-smart-plug-part-one/ExploitThird Party Advisory
- https://www.ckn.io/blog/2019/08/27/exploiting-the-eques-elf-smart-plug-part-threExploitThird Party Advisory
- https://www.ckn.io/blog/2019/08/27/exploiting-the-eques-elf-smart-plug-part-two/ExploitThird Party Advisory
FAQ
What is CVE-2019-15745?
CVE-2019-15745 is a vulnerability with a CVSS score of 8.8 (HIGH). The Eques elf smart plug and the mobile app use a hardcoded AES 256 bit key to encrypt the commands and responses between the device and the app. The communication happens over UDP port 27431. An atta...
How severe is CVE-2019-15745?
CVE-2019-15745 has been rated HIGH with a CVSS base score of 8.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2019-15745?
Check the references section above for vendor advisories and patch information. Affected products include: Equeshome Elf Smart Plug Firmware, Equeshome Elf Smart Plug.