Hetronic Nova-M prior to verson r161 uses fixed codes that are reproducible by sniffing and re-transmission. This can lead to unauthorized replay of a command, spoofing of an arbitrary message, or keeping the controlled load in a permanent "stop" state.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
hetronic nova-m_firmware |
||
hetronic es-can-hl_firmware |
||
hetronic bms-hl_firmware |
||
hetronic mlc_firmware |
||
hetronic dc_mobile_firmware |