Published: 16/04/2015 Updated: 23/04/2015

CVSS v2 Base Score: 3.3 | Impact Score: 2.9 | Exploitability Score: 6.5

VMScore: 294

Vector: AV:A/AC:L/Au:N/C:P/I:N/A:N

The LIXIL Corporation My SATIS Genius Toilet application for Android has a hardcoded Bluetooth PIN, which allows physically proximate malicious users to trigger physical resource consumption (water or heat) or user discomfort.

Vulnerable Product	Search on Vulmon	Subscribe to Product
lixil my satis genius toilet -

LIXIL Satis Toilet suffers from having a hard-coded bluetooth PIN of 0000 Attackers can cause your toilet to repeatedly flush Yes, this is a real advisory ...

NVD-CWE-noinfo http://seclists.org/fulldisclosure/2013/Aug/18 http://packetstormsecurity.com/files/122655/LIXIL-Satis-Toilet-Hard-Coded-Bluetooth-PIN.html http://arstechnica.com/security/2013/08/holy-sht-smart-toilet-hack-attack/http://www.independent.co.uk/life-style/gadgets-and-tech/features/now-even-toilets-arent-safe-from-hacking-8747232.html http://www.huffingtonpost.co.uk/2013/08/05/smart-toilet-could-attackmy-satis_n_3706116.html https://www.trustwave.com/spiderlabs/advisories/TWSL2013-020.txt https://nvd.nist.gov https://packetstormsecurity.com/files/122655/LIXIL-Satis-Toilet-Hard-Coded-Bluetooth-PIN.html

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2013-4866

Vulnerability Summary

Vulnerability Trend

Exploits

References

Vulmon Search

About

Products

Connect