Vulnerabilities > Abus

DATE CVE VULNERABILITY TITLE RISK
2019-05-14 CVE-2019-9861 Cryptographic Issues vulnerability in Abus Secvest Wireless Alarm System Fuaa50000 Firmware 3.01.01
Due to the use of an insecure RFID technology (MIFARE Classic), ABUS proximity chip keys (RFID tokens) of the ABUS Secvest FUAA50000 wireless alarm system can easily be cloned and used to deactivate the alarm system in an unauthorized way.
low complexity
abus CWE-310
8.1
2019-03-27 CVE-2019-9860 Cleartext Transmission of Sensitive Information vulnerability in Abus products
Due to unencrypted signal communication and predictability of rolling codes, an attacker can "desynchronize" an ABUS Secvest wireless remote control (FUBE50014 or FUBE50015) relative to its controlled Secvest wireless alarm system FUAA50000 3.01.01, so that sent commands by the remote control are not accepted anymore.
network
low complexity
abus CWE-319
7.5
2019-03-27 CVE-2019-9863 Use of Insufficiently Random Values vulnerability in Abus products
Due to the use of an insecure algorithm for rolling codes in the ABUS Secvest wireless alarm system FUAA50000 3.01.01 and its remote controls FUBE50014 and FUBE50015, an attacker is able to predict valid future rolling codes, and can thus remotely control the alarm system in an unauthorized way.
network
low complexity
abus CWE-330
critical
9.8
2019-03-27 CVE-2019-9862 Missing Encryption of Sensitive Data vulnerability in Abus products
An issue was discovered on ABUS Secvest wireless alarm system FUAA50000 3.01.01 in conjunction with Secvest remote control FUBE50014 or FUBE50015.
low complexity
abus CWE-311
6.5