CVE-2023-48034

Published: Nov 27, 2023Modified: Nov 21, 2024

6.1

Vector

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

Exploitability: 0.9 / Impact: 5.2

Source: NVD

Description

An issue discovered in Acer Wireless Keyboard SK-9662 allows attacker in physical proximity to both decrypt wireless keystrokes and inject arbitrary keystrokes via use of weak encryption.

Affected (1)

Products: Acer: Sk 9662 Firmware

Acer

1 product

Sk 9662 Firmware

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Acer Sk 9662 Firmware	All versions

Running on/with	Platform Versions
Acer Sk 9662	All versions

Related CWEs

CWE-326

Inadequate Encryption Strength

The product stores or transmits sensitive data using an encryption scheme that is theoretically sound, but is not strong enough for the level of protection required.

References (2)

https://github.com/aprkr/CVE-2023-48034

Source: cve@mitre.org

Third Party Advisory

https://github.com/aprkr/CVE-2023-48034

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

Timeline

No history available yet.