| عنوان | Flycatcher Toys smART Sketcher 2.0 0/1/2 Missing Authentication for Critical Function |
|---|
| الوصف | The smART Sketcher 2.0 is a Bluetooth-enabled children's drawing device that fails to implement authentication on its Bluetooth Low Energy interface. The device exposes a writable BLE characteristic that accepts connections and commands from any nearby Bluetooth device without requiring pairing, PIN, or any other form of authentication. This allows an unauthenticated attacker within Bluetooth range to connect to the device, upload arbitrary images that are immediately displayed to the user, and control device functions without user knowledge, authorization, or notification. This vulnerability could enable attackers ti display inappropriate content to children using the devices in homes, apartments, schools, daycare, and other settings. The vendor provides a mobile application requiring user authentication, creating a false impression of device security. However, the BLE service has no authentication and accepts connections from any client, completely bypassing the app. Attackers need neither the app nor user credentials to control the device, while users (parents) incorrectly believe they are protected. This affects all versions of the toy. |
|---|
| المصدر | ⚠️ https://github.com/davidrxchester/smart-sketcher-upload/blob/main/smartsketch-upload.py |
|---|
| المستخدم | davidrochester (UID 94063) |
|---|
| ارسال | 01/01/2026 10:08 PM (5 أشهر منذ) |
|---|
| الاعتدال | 10/01/2026 10:53 AM (9 days later) |
|---|
| الحالة | تمت الموافقة |
|---|
| إدخال VulDB | 340442 [Flycatcher Toys smART Sketcher حتى 2.0 Bluetooth Low Energy Interface توثيق ضعيف] |
|---|
| النقاط | 20 |
|---|