CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Mica: >> Fingerprint Bluetooth Padlock Fb50 Security Vulnerabilities

CVE-2020-10876

The OKLOK (3.1.1) mobile companion app for Fingerprint Bluetooth Padlock FB50 (2.3) does not correctly implement its timeout on the four-digit verification code that is required for resetting passwords, nor does it properly restrict excessive verification attempts. This allows an attacker to brute force the four-digit verification code in order to bypass email verification and change the password of a victim account.

CVSS Score

7.5

EPSS Score

0.002

Published

2020-05-04

Page 1

Vulnerabilities

Vulnerable Software

Mica: >> Fingerprint Bluetooth Padlock Fb50 Security Vulnerabilities

Products

Pricing

Contact Us