Insecure Algorithm in MCK Smartlock 1.0 Enables Replay Attacks for Unauthorized Access

Insecure Algorithm in MCK Smartlock 1.0 Enables Replay Attacks for Unauthorized Access

CVE-2022-30111 · MEDIUM Severity

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Due to the use of an insecure algorithm for rolling codes in MCK Smartlock 1.0, allows attackers to unlock the mechanism via replay attacks.

Learn more about our Web Application Penetration Testing UK.