CVE-2018-11631

MEDIUM

Rondaful M1 Wristband Smart Band 1 - Info Disclosure

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2018-11631. PoCs published by ColeShelly.

AI-analyzed exploit summary This PoC exploits CVE-2018-11631 by sending malicious BLE notifications to a vulnerable M1 Band 1 smartwatch, causing it to vibrate and display arbitrary messages. It uses `gatttool` to interact with the device's BLE interface.

Description

Rondaful M1 Wristband Smart Band 1 devices allow remote attackers to send an arbitrary number of call or SMS notifications via crafted Bluetooth Low Energy (BLE) traffic.

Exploits (1)

nomisec WORKING POC 2 stars

by ColeShelly · poc

https://github.com/ColeShelly/bandexploit

View Code ZIP pw:eip

This PoC exploits CVE-2018-11631 by sending malicious BLE notifications to a vulnerable M1 Band 1 smartwatch, causing it to vibrate and display arbitrary messages. It uses `gatttool` to interact with the device's BLE interface.

Classification

Working Poc 95%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: M1 Band 1 smartwatch (BLE firmware)

No auth needed

Prerequisites: Bluetooth Low Energy (BLE) adapter · Physical proximity to the target device · gatttool installed

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (1)

Core 1

Core References

Exploit, Third Party Advisory x_refsource_misc

https://github.com/xMagass/bandexploit

Scores

CVSS v3 4.3

EPSS 0.0942

EPSS Percentile 92.9%

Attack Vector ADJACENT_NETWORK

CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

Details

Status published

Products (1)

rondaful_project/rondaful_m1_wristband_smart_band_1_firmware

Published May 31, 2018

Tracked Since Feb 18, 2026