Vulnerabilities > U TEC > Ultraloq UL3 BT Firmware > High

DATE CVE VULNERABILITY TITLE RISK
2023-12-05 CVE-2022-46480 Authentication Bypass by Capture-replay vulnerability in U-Tec Ultraloq UL3 BT Firmware 02.27.0012
Incorrect Session Management and Credential Re-use in the Bluetooth LE stack of the Ultraloq UL3 2nd Gen Smart Lock Firmware 02.27.0012 allows an attacker to sniff the unlock code and unlock the device whilst within Bluetooth range.
low complexity
u-tec CWE-294
8.1