VYPR
Vendor

Owl Labs

Products
1
CVEs
5
Across products
5
Status
Private

Products

1

Recent CVEs

5
  • CVE-2022-31462CriJun 2, 2022
    risk 0.61cvss 9.3epss 0.01

    Owl Labs Meeting Owl 5.2.0.15 allows attackers to control the device via a backdoor password (derived from the serial number) that can be found in Bluetooth broadcast data.

  • CVE-2022-31463HigJun 2, 2022
    risk 0.53cvss 8.2epss 0.01

    Owl Labs Meeting Owl 5.2.0.15 does not require a password for Bluetooth commands, because only client-side authentication is used.

  • CVE-2022-31461HigJun 2, 2022
    risk 0.48cvss 7.4epss 0.01

    Owl Labs Meeting Owl 5.2.0.15 allows attackers to deactivate the passcode protection mechanism via a certain c 11 message.

  • CVE-2022-31460HigJun 2, 2022
    risk 0.48cvss 7.4epss 0.03

    Owl Labs Meeting Owl 5.2.0.15 allows attackers to activate Tethering Mode with hard-coded hoothoot credentials via a certain c 150 value.

  • CVE-2022-31459HigJun 2, 2022
    risk 0.48cvss 7.4epss 0.01

    Owl Labs Meeting Owl 5.2.0.15 allows attackers to retrieve the passcode hash via a certain c 10 value over Bluetooth.