CVE-2024-34268
HIGH
7.1
CVSS 3.1
Description
EQ-3 Eqiva CC-RT-BLE Bluetooth Smart Radiator Thermostat Firmware up to the latest version 1.46 was discovered to allow unsecured bluetooth connections. This vulnerability allows attackers to gain full access to the device without authentication.
Metadata
Severity & Metrics
7.1
HIGH CVSS 3.1
CVSS:3.1/AC:L/AV:A/A:L/C:N/I:H/PR:N/S:U/UI:N
Affected products (1)
| Vendor | Product | Platform | Versions |
|---|---|---|---|
| n/a | n/a | — | n/a |
Weakness (CWE)
| CWE | Source | Description |
|---|---|---|
| — | cna | n/a |
CVSS scores (1)
| Score | Severity | Version | Source | Vector |
|---|---|---|---|---|
| 7.1 | HIGH | 3.1 | cna | CVSS:3.1/AC:L/AV:A/A:L/C:N/I:H/PR:N/S:U/UI:N |