CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2018-10825

Mimo Baby 2 devices do not use authentication or encryption for the Bluetooth Low Energy (BLE) communication from a Turtle to a Lilypad, which allows attackers to inject fake information about the position and temperature of a baby via a replay or spoofing attack.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 3.1%

CVSS Severity

CVSS v3 Score 5.3

CVSS v2 Score 2.9

References

https://medium.com/%40victor_14768/mimo-baby-hack-ac7fa0ae3bfb
https://medium.com/%40victor_14768/mimo-baby-hack-ac7fa0ae3bfb

Products affected by CVE-2018-10825

Mimobaby » Mimo Baby 2 » Version: N/A

cpe:2.3:h:mimobaby:mimo_baby_2:-
Mimobaby » Mimo Baby 2 Firmware » Version: N/A

cpe:2.3:o:mimobaby:mimo_baby_2_firmware:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-10825

Products

Pricing

Contact Us