| 제목 | Flycatcher Toys smART Sketcher 2.0 0/1/2 Missing Authentication for Critical Function |
|---|
| 설명 | The smART Sketcher 2.0 is a Bluetooth-enabled children's drawing device that fails to implement authentication on its Bluetooth Low Energy interface. The device exposes a writable BLE characteristic that accepts connections and commands from any nearby Bluetooth device without requiring pairing, PIN, or any other form of authentication. This allows an unauthenticated attacker within Bluetooth range to connect to the device, upload arbitrary images that are immediately displayed to the user, and control device functions without user knowledge, authorization, or notification. This vulnerability could enable attackers ti display inappropriate content to children using the devices in homes, apartments, schools, daycare, and other settings. The vendor provides a mobile application requiring user authentication, creating a false impression of device security. However, the BLE service has no authentication and accepts connections from any client, completely bypassing the app. Attackers need neither the app nor user credentials to control the device, while users (parents) incorrectly believe they are protected. This affects all versions of the toy. |
|---|
| 원천 | ⚠️ https://github.com/davidrxchester/smart-sketcher-upload/blob/main/smartsketch-upload.py |
|---|
| 사용자 | davidrochester (UID 94063) |
|---|
| 제출 | 2026. 01. 01. PM 10:08 (5 개월 ago) |
|---|
| 모더레이션 | 2026. 01. 10. AM 10:53 (9 days later) |
|---|
| 상태 | 수락 |
|---|
| VulDB 항목 | 340442 [Flycatcher Toys smART Sketcher 까지 2.0 Bluetooth Low Energy Interface 약한 인증] |
|---|
| 포인트들 | 20 |
|---|