Unauthenticated Firmware Update in Fastrack Reflex 2.0 Activity Tracker
CVE-ID
CVE-2021-35951
Vendor
Fastrack
Product
Fastrack Reflex 2.0 Activity Tracker
Vulnerability
An unauthenticated firmware update vulnerability allows an attacker to overwrite the device firmware without proper validation or authentication.
Vulnerability Description
Analysis revealed that the Fastrack Reflex 2.0 smartwatch accepts firmware update commands over Bluetooth Low Energy (BLE) without requiring pairing, authorization, or signature validation.
An attacker in BLE range can push a malicious firmware image that could modify device behavior, implant backdoors, or render the device inoperable.
This vulnerability highlights a lack of secure firmware update mechanisms, such as cryptographic signatures or device pairing checks, exposing users to remote compromise risks.
This vulnerability highlights a lack of secure firmware update mechanisms, such as cryptographic signatures or device pairing checks, exposing users to remote compromise risks.
Disclosure Timeline
17 Nov 2020 — Reported to vendor
30 Jun 2021 — No response; moving forward to public disclosure
30 Jun 2021 — No response; moving forward to public disclosure
Credit
Shakir Zari