Title: Fastrack Reflex 2.0 Activity Tracker Vulnerability: Firmware Dumping, Malicious Firmware Flashing, and Device Bricking via SWD

Title: Fastrack Reflex 2.0 Activity Tracker Vulnerability: Firmware Dumping, Malicious Firmware Flashing, and Device Bricking via SWD

CVE-2021-35954 · HIGH Severity

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H

fastrack Reflex 2.0 W307S_REFLEX_v90.89 Activity Tracker allows physically proximate attackers to dump the firmware, flash custom malicious firmware, and brick the device via the Serial Wire Debug (SWD) feature.

Learn more about our Physical Security Assessment.