CVE-2020-11539 — HIGH (8.1)

Vulnerability Description

An issue was discovered on Tata Sonata Smart SF Rush 1.12 devices. It has been identified that the smart band has no pairing (mode 0 Bluetooth LE security level) The data being transmitted over the air is not encrypted. Adding to this, the data being sent to the smart band doesn't have any authentication or signature verification. Thus, any attacker can control a parameter of the device.

CVSS Score

8.1

HIGH

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

Attack Vector

ADJACENT_NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

NONE

Affected Products

Vendor	Product	Versions
Titan	Sf Rush Smart Band Firmware	1.12
Titan	Sf Rush Smart Band	-

Related Weaknesses (CWE)

CWE-306 CWE-347 CWE-319

References

https://github.com/the-girl-who-lived/CVE-2020-11539/ExploitThird Party Advisory
https://medium.com/%40sayliambure/hacking-a-5-smartband-824763ab6e8f
https://github.com/the-girl-who-lived/CVE-2020-11539/ExploitThird Party Advisory
https://medium.com/%40sayliambure/hacking-a-5-smartband-824763ab6e8f

FAQ

What is CVE-2020-11539?

CVE-2020-11539 is a vulnerability with a CVSS score of 8.1 (HIGH). An issue was discovered on Tata Sonata Smart SF Rush 1.12 devices. It has been identified that the smart band has no pairing (mode 0 Bluetooth LE security level) The data being transmitted over the ai...

How severe is CVE-2020-11539?

CVE-2020-11539 has been rated HIGH with a CVSS base score of 8.1/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2020-11539?

Check the references section above for vendor advisories and patch information. Affected products include: Titan Sf Rush Smart Band Firmware, Titan Sf Rush Smart Band.