Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A lack of authentication and authorization mechanisms in the Bluetooth Low Energy (BLE) communication protocol of SRK Powertech Pvt Ltd Pebble Prism Ultra v2.9.2 allows attackers to reverse engineer the protocol and execute arbitrary commands on the device without establishing a connection. This is exploitable over Bluetooth Low Energy (BLE) proximity (Adjacent), requiring no physical contact with the device. Furthermore, the vulnerability is not limited to arbitrary commands but includes cleartext data interception and unauthenticated firmware hijacking via OTA services.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
SRK Powertech Pebble Prism Ultra 安全漏洞
Vulnerability Description
SRK Powertech Pebble Prism Ultra是印度SRK Powertech公司的一个蓝牙通话智能手表。 SRK Powertech Pebble Prism Ultra v2.9.2版本存在安全漏洞,该漏洞源于蓝牙低功耗通信协议缺乏身份验证和授权机制,可能导致攻击者无需建立连接即可对设备执行任意命令、拦截明文数据或进行未经授权的固件劫持。
CVSS Information
N/A
Vulnerability Type
N/A