Vulnerability in Abus Secvest_wireless_alarm_system_fuaa50000
CVE-2019-9860
Due to unencrypted signal communication and predictability of rolling codes, an attacker can "desynchronize" an ABUS Secvest wireless remote control (FUBE50014 or FUBE50015) relative to its controlled Secvest wireless alarm system FUAA5000…
EPSS: 0.008 (53.3th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 7.5 (High). Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H.
Affected products
- Abus Secvest_wireless_alarm_system_fuaa50000
- Abus Secvest_wireless_alarm_system_fuaa50000_firmware — versions 3.01.01
- Abus Secvest_wireless_remote_control_fube50014
- Abus Secvest_wireless_remote_control_fube50014_firmware
- Abus Secvest_wireless_remote_control_fube50015
- Abus Secvest_wireless_remote_control_fube50015_firmware
- N/a — versions n/a
Weakness classification (CWE)
References
- cve@mitre.org (Third Party Advisory, x_refsource_MISC)
Frequently asked questions
- What is CVE-2019-9860?
- CVE-2019-9860 is a high-severity vulnerability in Abus Secvest_wireless_alarm_system_fuaa50000, classified under Cleartext Transmission of Sensitive Information. CVSS score: 7.5/10. Published 2019-03-27.
- How severe is CVE-2019-9860?
- High severity. CVSS v3 base score is 7.5 out of 10.