CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2019-12943

TTLock devices do not properly restrict password-reset attempts, leading to incorrect access control and disclosure of sensitive information about valid account names.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 57.1%

CVSS Severity

CVSS v3 Score 8.1

CVSS v2 Score 2.6

References

https://www.kth.se/polopoly_fs/1.923564.1568098316%21/Vulnerability_Report_TTLock_Password_Reset.pdf
https://www.kth.se/polopoly_fs/1.923564.1568098316%21/Vulnerability_Report_TTLock_Password_Reset.pdf

Products affected by CVE-2019-12943

Ttlock » Ttlock » Version: N/A

cpe:2.3:a:ttlock:ttlock:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-12943

Products

Pricing

Contact Us