漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
ChargePoint Home Flex Bluetooth Low Energy Information Disclosure Vulnerability
Vulnerability Description
ChargePoint Home Flex Bluetooth Low Energy Information Disclosure Vulnerability. This vulnerability allows network-adjacent attackers to disclose sensitive information on affected installations of ChargePoint Home Flex charging devices. User interaction is required to exploit this vulnerability. The specific flaw exists within the Wi-Fi setup logic. By connecting to the device over Bluetooth Low Energy during the setup process, an attacker can obtain Wi-Fi credentials. An attacker can leverage this vulnerability to disclose credentials and gain access to the device owner's Wi-Fi network. Was ZDI-CAN-21454.
CVSS Information
N/A
Vulnerability Type
信息暴露
Vulnerability Title
ChargePoint Home Flex 信息泄露漏洞
Vulnerability Description
ChargePoint Home Flex是美国ChargePoint公司的一系列电动汽车充电设备。 ChargePoint Home Flex存在信息泄露漏洞,该漏洞源于Wi-Fi设置逻辑中的蓝牙低功耗信息泄露,可能导致网络相邻的攻击者在用户交互后披露敏感信息。
CVSS Information
N/A
Vulnerability Type
N/A