Vulnerabilities > CVE-2022-35648 - Unspecified vulnerability in Nautilus T616 Firmware and T618 Firmware
Attack vector
PHYSICAL Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
NONE Availability impact
LOW low complexity
nautilus
Summary
Nautilus treadmills T616 S/N 100672PRO21140001 through 100672PRO21171980 and T618 S/N 100647PRO21130111 through 100647PRO21183960 with software before 2022-06-09 allow physically proximate attackers to cause a denial of service (fall) by connecting the power cord to a 120V circuit (which may lead to self-starting at an inopportune time).
Vulnerable Configurations
Part | Description | Count |
---|---|---|
OS | 2 | |
Hardware | 2 |
References
- https://cwe.mitre.org/data/definitions/372.html
- https://cwe.mitre.org/data/definitions/372.html
- https://download.nautilus.com/pdf/NLS.T616-T618.cpsc.safety.notice.EN.pdf
- https://download.nautilus.com/pdf/NLS.T616-T618.cpsc.safety.notice.EN.pdf
- https://www.cpsc.gov/Recalls/2022/Nautilus-Recalls-Treadmills-Due-to-Fall-Hazard
- https://www.cpsc.gov/Recalls/2022/Nautilus-Recalls-Treadmills-Due-to-Fall-Hazard