Products

Solutions

Company

Book A Live Demo

CVE-2017-17910 : What You Need to Know

Learn about CVE-2017-17910, a critical vulnerability in Hoermann BiSecur devices allowing unauthorized access. Find out how attackers exploit radio transmissions and steps to mitigate the risk.

Hoermann BiSecur devices before 2018 are vulnerable to exploitation through radio transmission interception, allowing attackers to control garage and gate operators.

Understanding CVE-2017-17910

This CVE involves a critical vulnerability in Hoermann BiSecur devices that enables unauthorized access and control of various systems.

What is CVE-2017-17910?

The vulnerability in Hoermann BiSecur devices allows attackers to intercept radio transmissions, obtain encryption keys, and control garage and gate operators without the need for one-time pairing.

The Impact of CVE-2017-17910

Attackers can create and send radio frames with the correct encryption key, leading to unauthorized control of BiSecur systems.

Affected devices include Hoermann Hand Transmitter models HS5-868-BS, HSE1-868-BS, and HSE2-868-BS.

Technical Details of CVE-2017-17910

Hoermann BiSecur devices are susceptible to a critical vulnerability due to the following:

Vulnerability Description

Attackers can exploit the use of AES-128 with static random values and data vectors to derive encryption keys easily.

By decrypting intercepted packets and verifying known plaintext, attackers can control BiSecur systems through wireless cloning.

Affected Systems and Versions

Hoermann Hand Transmitter models HS5-868-BS, HSE1-868-BS, and HSE2-868-BS are impacted by this vulnerability.

Exploitation Mechanism

Attackers can intercept radio frames exchanged between BiSecur transmitters and receivers to obtain encryption keys and control systems.

Mitigation and Prevention

To address CVE-2017-17910, consider the following steps:

Immediate Steps to Take

Update affected Hoermann BiSecur devices to the latest firmware version.

Implement additional authentication mechanisms to enhance security.

Long-Term Security Practices

Regularly monitor and audit radio transmissions for any suspicious activities.

Educate users on secure pairing processes and encryption key management.

Patching and Updates

Stay informed about security updates and patches released by Hoermann for BiSecur devices.

CVE-2017-17910 : What You Need to Know

Understanding CVE-2017-17910

What is CVE-2017-17910?

The Impact of CVE-2017-17910

Technical Details of CVE-2017-17910

Vulnerability Description

Affected Systems and Versions

Exploitation Mechanism

Mitigation and Prevention

Immediate Steps to Take

Long-Term Security Practices

Patching and Updates

Popular CVEs

CVE Id

Published Date

Is your System Free of Underlying Vulnerabilities?
Find Out Now

CVE-2017-17910 : What You Need to Know

.css-lczsrn{margin:0;font-family:Inter;font-weight:400;font-size:1.2857142857142858rem;line-height:1.5;color:#161857;text-align:left;font-size:24px;font-weight:700;margin-top:1rem;font-family:sans-serif;}Understanding CVE-2017-17910

.css-ru2q5j{margin:0;font-family:Inter;font-weight:400;font-size:1.2857142857142858rem;line-height:1.5;color:#161857;text-align:left;font-size:1.2rem;font-weight:700;margin-top:1rem;margin-bottom:0rem;font-family:sans-serif;}What is CVE-2017-17910?

The Impact of CVE-2017-17910

Technical Details of CVE-2017-17910

Vulnerability Description

Affected Systems and Versions

Exploitation Mechanism

Mitigation and Prevention

Immediate Steps to Take

Long-Term Security Practices

Patching and Updates

Popular CVEs

CVE Id

Published Date

Is your System Free of Underlying Vulnerabilities? Find Out Now

Understanding CVE-2017-17910

What is CVE-2017-17910?

Is your System Free of Underlying Vulnerabilities?
Find Out Now