Yale
Products
7- 1 CVE
- 1 CVE
- 1 CVE
- 1 CVE
- 1 CVE
- 1 CVE
- 1 CVE
Recent CVEs
6| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2020-23826 | 0.01 | — | 0.11 | Jan 22, 2021 | The Yale WIPC-303W 2.21 through 2.31 camera is vulnerable to remote command execution (RCE) through command injection via the HTTP API. NOTE: This may be a duplicate of CVE-2020-10176 | |||
| CVE-2023-26943 | 0.00 | — | 0.00 | Dec 4, 2023 | Weak encryption mechanisms in RFID Tags in Yale Keyless Lock v1.0 allows attackers to create a cloned tag via physical proximity to the original. | |||
| CVE-2023-26941 | 0.00 | — | 0.00 | Dec 4, 2023 | Weak encryption mechanisms in RFID Tags in Yale Conexis L1 v1.1.0 allows attackers to create a cloned tag via physical proximity to the original. | |||
| CVE-2023-26942 | 0.00 | — | 0.00 | Dec 4, 2023 | Weak encryption mechanisms in RFID Tags in Yale IA-210 Alarm v1.0 allows attackers to create a cloned tag via physical proximity to the original. | |||
| CVE-2020-10176 | 0.00 | — | 0.00 | May 7, 2020 | ASSA ABLOY Yale WIPC-301W 2.x.2.29 through 2.x.2.43_p1 devices allow Eval Injection of commands. | |||
| CVE-2019-17627 | 0.00 | — | 0.00 | Oct 16, 2019 | The Yale Bluetooth Key application for mobile devices allows unauthorized unlock actions by sniffing Bluetooth Low Energy (BLE) traffic during one authorized unlock action, and then calculating the authentication key via simple computations on the hex digits of a valid… |
- CVE-2020-23826Jan 22, 2021risk 0.01cvss —epss 0.11
The Yale WIPC-303W 2.21 through 2.31 camera is vulnerable to remote command execution (RCE) through command injection via the HTTP API. NOTE: This may be a duplicate of CVE-2020-10176
- CVE-2023-26943Dec 4, 2023risk 0.00cvss —epss 0.00
Weak encryption mechanisms in RFID Tags in Yale Keyless Lock v1.0 allows attackers to create a cloned tag via physical proximity to the original.
- CVE-2023-26941Dec 4, 2023risk 0.00cvss —epss 0.00
Weak encryption mechanisms in RFID Tags in Yale Conexis L1 v1.1.0 allows attackers to create a cloned tag via physical proximity to the original.
- CVE-2023-26942Dec 4, 2023risk 0.00cvss —epss 0.00
Weak encryption mechanisms in RFID Tags in Yale IA-210 Alarm v1.0 allows attackers to create a cloned tag via physical proximity to the original.
- CVE-2020-10176May 7, 2020risk 0.00cvss —epss 0.00
ASSA ABLOY Yale WIPC-301W 2.x.2.29 through 2.x.2.43_p1 devices allow Eval Injection of commands.
- CVE-2019-17627Oct 16, 2019risk 0.00cvss —epss 0.00
The Yale Bluetooth Key application for mobile devices allows unauthorized unlock actions by sniffing Bluetooth Low Energy (BLE) traffic during one authorized unlock action, and then calculating the authentication key via simple computations on the hex digits of a valid…