HIGH🇬🇧 English

CVE-2023-2626

CVSS 7.5v3.1pub. 2023-07-25upd. 2024-11-21

There exists an authentication bypass vulnerability in OpenThread border router devices and implementations. This issue allows unauthenticated nodes to craft radio frames using “Key ID Mode 2”: a special mode using a static encryption key to bypass security checks, resulting in arbitrary IP packets being allowed on the Thread network. This provides a pathway for an attacker to send/receive arbitrary IPv6 packets to devices on the LAN, potentially exploiting them if they lack additional authentication or contain any network vulnerabilities that would normally be mitigated by the home router’s NAT firewall. Effected devices have been mitigated through an automatic update beyond the affected range.

oryginał EN
CVSS Vector
CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Google Nest Hub

    HW
    Google
    wszystkie wersje
  • Google Nest Hub Firmware

    OS
    Google
    10.20221207.2.100038 – 10.20221207.2.100042 (bez)
  • Google Nest Hub Max

    HW
    Google
    wszystkie wersje
  • Google Nest Hub Max Firmware

    OS
    Google
    10.20221207.2.109 – 10.20221207.2.120 (bez)
  • Google Nest Wifi 6e

    HW
    Google
    wszystkie wersje
  • Google Nest Wifi 6e Firmware

    OS
    Google
    1.59 – 1.63.355999 (bez)
  • Google Nest Wifi Point

    HW
    Google
    wszystkie wersje
  • Google Nest Wifi Point Firmware

    OS
    Google
    1.56.1 – 1.56.368671 (bez)
  • Google Wifi

    HW
    Google
    wszystkie wersje
  • Google Wifi Firmware

    OS
    Google
    14150.881.7 – 14150.882.9 (bez)
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
Tagi
Auth BypassFirewall
CWE
Referencje

Powiązane podatności

CVE-2024-22004CRITICAL10.0PL ✓ten sam produkt

Wyciek pamięci Trusted Application w urządzeniach Google Nest Wifi

CVE-2024-22013MEDIUM5.3ten sam produkt

U-Boot environment is read from unauthenticated partition.

CVE-2025-10585CRITICAL9.8⚠ KEVPL ✓ten sam vendor

Type confusion w V8 (Google Chrome) — zdalne uszkodzenie sterty

CVE-2024-7971CRITICAL9.6⚠ KEVPL ✓ten sam vendor

Type confusion w V8 (Google Chrome/Edge) umożliwiający heap corruption

CVE-2024-5274CRITICAL9.6⚠ KEVPL ✓ten sam vendor

Type Confusion w V8 (Google Chrome) — RCE przez spreparowaną stronę HTML