Vulnerability Description
An issue was discovered on Fujitsu Wireless Keyboard Set LX390 GK381 devices. Because of the lack of proper encryption of 2.4 GHz communication, they are prone to keystroke injection attacks.
CVSS Score
9.8
CRITICAL
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Fujitsu | Lx390 Firmware | - |
| Fujitsu | Lx390 | gk381 |
References
- http://packetstormsecurity.com/files/154956/Fujitsu-Wireless-Keyboard-Set-LX390-ExploitThird Party AdvisoryVDB Entry
- https://www.syss.de/fileadmin/dokumente/Publikationen/Advisories/SYSS-2019-011.tExploitThird Party Advisory
- https://www.syss.de/pentest-blog/2019/syss-2019-009-syss-2019-010-und-syss-2019-Third Party Advisory
- http://packetstormsecurity.com/files/154956/Fujitsu-Wireless-Keyboard-Set-LX390-ExploitThird Party AdvisoryVDB Entry
- https://www.syss.de/fileadmin/dokumente/Publikationen/Advisories/SYSS-2019-011.tExploitThird Party Advisory
- https://www.syss.de/pentest-blog/2019/syss-2019-009-syss-2019-010-und-syss-2019-Third Party Advisory
FAQ
What is CVE-2019-18200?
CVE-2019-18200 is a vulnerability with a CVSS score of 9.8 (CRITICAL). An issue was discovered on Fujitsu Wireless Keyboard Set LX390 GK381 devices. Because of the lack of proper encryption of 2.4 GHz communication, they are prone to keystroke injection attacks.
How severe is CVE-2019-18200?
CVE-2019-18200 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.
Is there a patch for CVE-2019-18200?
Check the references section above for vendor advisories and patch information. Affected products include: Fujitsu Lx390 Firmware, Fujitsu Lx390.