CVE-2017-8867 in Dino Smart Toy정보

요약

\~에 의해 MITRE

Elemental Path's CogniToys Dino smart toys through firmware version 0.0.794 use AES-128 with ECB mode to encrypt voice traffic between the device and remote server, allowing a malicious user to map encrypted traffic to a particular AES key index and gaining further access to eavesdrop on privacy-sensitive voice communication of a child and their Dino device.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

예약하다

2017. 05. 09.

모더레이션

수락

항목

VDB-110505

EPSS

0.00832

출처

Want to know what is going to be exploited?

We predict KEV entries!