CVE-2023-50129
MEDIUMFlient Smart Door Lock v1.0 - Missing Encryption of Sensitive Data in NFC Tags
Title source: llmDescription
Missing encryption in the NFC tags of the Flient Smart Door Lock v1.0 allows attackers to create a cloned tag via brief physical proximity to the original tags, which results in an attacker gaining access to the perimeter.
References (1)
Core 1
Core References
Exploit, Third Party Advisory
https://www.secura.com/services/iot/consumer-products/security-concerns-in-popular-smart-home-devices
Scores
CVSS v3
6.5
EPSS
0.0014
EPSS Percentile
3.9%
Attack Vector
ADJACENT_NETWORK
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
CISA SSVC
Vulnrichment
Exploitation
poc
Automatable
no
Technical Impact
total
Details
CWE
CWE-311
Status
published
Products (1)
flient/smart_lock_advanced_firmware
1.0
Published
Jan 11, 2024
Tracked Since
Feb 18, 2026