N/A

An access control weakness in the DTMF tone receiver of Fermax Outdoor Panel allows physical attackers to inject a Dual-Tone-Multi-Frequency (DTMF) tone to invoke an access grant that would allow physical access to a restricted floor/level. By design, only a residential unit owner may allow such an access grant. However, due to incorrect access control, an attacker could inject it via the speaker unit to perform an access grant to gain unauthorized access, as demonstrated by a loud DTMF tone representing '1' and a long '#' (697 Hz and 1209 Hz, followed by 941 Hz and 1477 Hz).

N/A

N/A

Fermax Outdoor Panel DTMF tone receiver 访问控制错误漏洞

Fermax Outdoor Panel是西班牙弗曼科斯（Fermax）公司的一款用于门禁系统的电子和视频输入户外面板设备。DTMF tone receiver是其中的一个音频接收器。 Fermax Outdoor Panel中的DTMF tone receiver存在访问控制错误漏洞。该漏洞源于网络系统或产品未正确限制来自未授权角色的资源访问。

N/A

N/A