Lack of Bluetooth LE pairing and access control in Fastrack reflex 2.0 activity tracker
Vulnerability
Lack of Bluetooth LE pairing and access control: time, date, and month can be modified on the smartwatch.
Vulnerability Description
Analyzed BLE characteristics showed that on handle
0x0017 the value modifying time/date/month is writable without pairing or authorization.
An attacker within BLE range can change device time and date.
CVE-ID
CVE-2021-35952
Vendor
Fastrack
Product
Fastrack Reflex 2.0 Activity Tracker
Disclosure Timeline
17 Nov 2020 — Reported to vendor
30 Jun 2021 — No response; moving forward to public disclosure
30 Jun 2021 — No response; moving forward to public disclosure
Credit
Shakir Zari