| Título | Flycatcher Toys smART Sketcher 2.0 0/1/2 Missing Authentication for Critical Function |
|---|
| Descrição | The smART Sketcher 2.0 is a Bluetooth-enabled children's drawing device that fails to implement authentication on its Bluetooth Low Energy interface. The device exposes a writable BLE characteristic that accepts connections and commands from any nearby Bluetooth device without requiring pairing, PIN, or any other form of authentication. This allows an unauthenticated attacker within Bluetooth range to connect to the device, upload arbitrary images that are immediately displayed to the user, and control device functions without user knowledge, authorization, or notification. This vulnerability could enable attackers ti display inappropriate content to children using the devices in homes, apartments, schools, daycare, and other settings. The vendor provides a mobile application requiring user authentication, creating a false impression of device security. However, the BLE service has no authentication and accepts connections from any client, completely bypassing the app. Attackers need neither the app nor user credentials to control the device, while users (parents) incorrectly believe they are protected. This affects all versions of the toy. |
|---|
| Fonte | ⚠️ https://github.com/davidrxchester/smart-sketcher-upload/blob/main/smartsketch-upload.py |
|---|
| Utilizador | davidrochester (UID 94063) |
|---|
| Submissão | 01/01/2026 22h08 (há 5 meses) |
|---|
| Moderação | 10/01/2026 10h53 (9 days later) |
|---|
| Estado | Aceite |
|---|
| Entrada VulDB | 340442 [Flycatcher Toys smART Sketcher até 2.0 Bluetooth Low Energy Interface Autenticação fraca] |
|---|
| Pontos | 20 |
|---|