BLE Traffic Replay Vulnerability in Maxima Max Pro Power 1.0 486A Devices

BLE Traffic Replay Vulnerability in Maxima Max Pro Power 1.0 486A Devices

CVE-2023-46916 · MEDIUM Severity

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

Maxima Max Pro Power 1.0 486A devices allow BLE traffic replay. An attacker can use GATT characteristic handle 0x0012 to perform potentially disruptive actions such as starting a Heart Rate monitor.

Learn more about our Web Application Penetration Testing UK.