CVE-2019-13143

CRITICAL

Shenzhen Dragon Brothers Fb50 Firmware - Improper Input Validation

Title source: rule

Description

An HTTP parameter pollution issue was discovered on Shenzhen Dragon Brothers Fingerprint Bluetooth Round Padlock FB50 2.3. With the user ID, user name, and the lock's MAC address, anyone can unbind the existing owner of the lock, and bind themselves instead. This leads to complete takeover of the lock. The user ID, name, and MAC address are trivially obtained from APIs found within the Android or iOS application. With only the MAC address of the lock, any attacker can transfer ownership of the lock from the current user, over to the attacker's account. Thus rendering the lock completely inaccessible to the current user.

Exploits (1)

nomisec WORKING POC 16 stars

by securelayer7 · poc

https://github.com/securelayer7/pwnfb50

View Code ZIP pw:eip

References (1)

[Exploit, Third Party Advisory] http://blog.securelayer7.net/fb50-smart-lock-vulnerability-disclosure/

Scores

CVSS v3 9.8

EPSS 0.0411

EPSS Percentile 88.6%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-20

Status published

Products (1)

shenzhen_dragon_brothers/fb50_firmware 2.3

Published Aug 06, 2019

Tracked Since Feb 18, 2026