CVE-2026-37271 in FB BGS001info

Zusammenfassung

von MITRE • 08.07.2026

Fire-Boltt Smartwatch FB BGS001 Firmware: MOY-JS14-2.0.4 is vulnerable to Improper Authentication, The device accepts GATT Write Request commands without sufficient authentication or strong session validation. Under specific conditions, previously captured BLE packets can be replayed from a nearby device to trigger functionality on the smartwatch.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

Zuständig

MITRE

Reservieren

06.04.2026

Veröffentlichung

08.07.2026

Moderieren

akzeptiert

Eintrag

VDB-376736

CPE

bereit

EPSS

0.00000

KEV

nein

Aktivitäten

very low

Quellen

Do you want to use VulDB in your project?

Use the official API to access entries easily!