Vulnerabilities > CVE-2019-18200 - Unspecified vulnerability in Fujitsu Lx390 Firmware

CVSS 10.0 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

COMPLETE

Integrity impact

COMPLETE

Availability impact

COMPLETE

network

low complexity

fujitsu

critical

NVD

Published: 2019-10-24

Updated: 2020-08-24

Summary

An issue was discovered on Fujitsu Wireless Keyboard Set LX390 GK381 devices. Because of the lack of proper encryption of 2.4 GHz communication, they are prone to keystroke injection attacks.

Vulnerable Configurations

Part	Description	Count
OS	Fujitsu Fujitsu Lx390 Firmware -	1
Hardware	Fujitsu Fujitsu Lx390 Gk381	1

References

http://packetstormsecurity.com/files/154956/Fujitsu-Wireless-Keyboard-Set-LX390-Keystroke-Injection.html
https://www.syss.de/fileadmin/dokumente/Publikationen/Advisories/SYSS-2019-011.txt
https://www.syss.de/pentest-blog/2019/syss-2019-009-syss-2019-010-und-syss-2019-011-schwachstellen-in-weiterer-funktastatur-mit-sicherer-24-ghz-technologie/