Vulnerabilities > Syska
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-10-31 | CVE-2022-3007 | Missing Authorization vulnerability in Syska Sw100 Smartwatch Firmware 2.0 The vulnerability exists in Syska SW100 Smartwatch due to an improper implementation and/or configuration of Nordic Device Firmware Update (DFU) which is used for performing Over-The-Air (OTA) firmware updates on the Bluetooth Low Energy (BLE) devices. | 8.1 |
| 2020-02-10 | CVE-2017-18642 | Information Exposure vulnerability in Syska Smartlight Rainbow LED Smart Bulb Firmware 20170806 Syska Smart Bulb devices through 2017-08-06 receive RGB parameters over cleartext Bluetooth Low Energy (BLE), leading to sniffing, reverse engineering, and replay attacks. | 3.3 |