CVE-2025-30072

Sažetak

Tiiwee X1 Alarm System TWX1HAKV2 allows Authentication Bypass by Capture-replay, leading to physical Access to the protected facilities without triggering an alarm.

Reference

https://www.syss.de/fileadmin/dokumente/Publikationen/Advisories/SYSS-2025-006.txt
https://www.tiiwee.com/collections/x1-alarm-systems
http://seclists.org/fulldisclosure/2025/May/20

CVSS

Base:	7.6
Impact:	4.7
Exploitability:	2.8

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
LOW	LOW	HIGH

CVSS vektor

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:H

Zadnje važnije ažuriranje

19-05-2025 - 16:15

Objavljeno

19-05-2025 - 15:15