Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An issue was discovered on COROS PACE 3 devices through 3.0808.0. It identifies itself as a device without input or output capabilities, which results in the use of the Just Works pairing method. This method does not implement any authentication, which therefore allows machine-in-the-middle attacks. Furthermore, this lack of authentication allows attackers to interact with the device via BLE without requiring prior authorization.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
COROS PACE 3 安全漏洞
Vulnerability Description
COROS PACE 3是中国COROS公司的一款GPS运动手表。 COROS PACE 3 3.0808.0及之前版本存在安全漏洞,该漏洞源于缺乏身份验证,可能导致中间人攻击。
CVSS Information
N/A
Vulnerability Type
N/A