Vulnerabilities > CVE-2023-49914 - Unspecified vulnerability in Choosemuse Muse 2 Firmware

CVSS 6.5 - MEDIUM

Attack vector

ADJACENT_NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

HIGH

Availability impact

NONE

low complexity

choosemuse

NVD

Published: 2023-12-02

Updated: 2023-12-07

Summary

InteraXon Muse 2 devices allow remote attackers to cause a denial of service (incorrect Muse App report of an outstanding, calm meditation state) via a 480 MHz RF carrier that is modulated by a "false" brain wave, aka a Brain-Hack attack. For example, the Muse App does not display the reception of a strong RF carrier, and alert the user that a report may be misleading if this carrier has been modulated by a low-frequency signal.

Vulnerable Configurations

Part	Description	Count
OS	Choosemuse Choosemuse Muse 2 Firmware -	1
Hardware	Choosemuse Choosemuse Muse 2 -	1

References

https://dl.acm.org/doi/10.1145/3605758.3623497
https://scholar.google.com/citations?view_op=view_citation&hl=en&user=8hu27apy8A4C&citation_for_view=8hu27apy8A4C:Se3iqnhoufwC