CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2021-35952

fastrack Reflex 2.0 W307S_REFLEX_v90.89 Activity Tracker allows a Remote attacker to change the time, date, and month via Bluetooth LE Characteristics on handle 0x0017.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 17.1%

CVSS Severity

CVSS v3 Score 5.3

References

https://payatu.com/advisory/lack-of-bluetooth-le-pairing-fastrack-reflex
https://www.fastrack.in/shop/watch-smart-wearables-reflex-2
https://payatu.com/advisory/lack-of-bluetooth-le-pairing-fastrack-reflex
https://www.fastrack.in/shop/watch-smart-wearables-reflex-2

Products affected by CVE-2021-35952

Fastrack » Reflex 2.0 » Version: N/A

cpe:2.3:h:fastrack:reflex_2.0:-
Fastrack » Reflex 2.0 Firmware » Version: 90.89

cpe:2.3:o:fastrack:reflex_2.0_firmware:90.89

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-35952

Products

Pricing

Contact Us