Sign-up

ID

VAR-201712-0583


CVE

CVE-2017-17910


TITLE

Hoermann BiSecur Device cryptographic vulnerability

Trust: 0.8

sources: JVNDB: JVNDB-2017-011843

DESCRIPTION

On Hoermann BiSecur devices before 2018, a vulnerability can be exploited by recording a single radio transmission. An attacker can intercept an arbitrary radio frame exchanged between a BiSecur transmitter and a receiver to obtain the encrypted packet and the 32-bit serial number. The interception of the one-time pairing process is specifically not required. Due to use of AES-128 with an initial static random value and static data vector (all of this static information is the same across different customers' installations), the attacker can easily derive the utilized encryption key and decrypt the intercepted packet. The key can be verified by decrypting the intercepted packet and checking for known plaintext. Subsequently, an attacker can create arbitrary radio frames with the correct encryption key to control BiSecur garage and entrance gate operators and possibly other BiSecur systems as well ("wireless cloning"). To conduct the attack, a low cost Software Defined Radio (SDR) is sufficient. This affects Hoermann Hand Transmitter HS5-868-BS, HSE1-868-BS, and HSE2-868-BS devices. Hoermann BiSecur The device contains a cryptographic vulnerability.Denial of service (DoS) May be in a state. HoermannBiSecurdevices is a security door remote control device from Hoermann, Germany. A security vulnerability exists in previous versions of HoermannBiSecur device 2018

Trust: 2.25

sources: NVD: CVE-2017-17910 // JVNDB: JVNDB-2017-011843 // CNVD: CNVD-2018-02819 // VULHUB: VHN-108980

IOT TAXONOMY

category:['Network device']sub_category: -

Trust: 0.6

sources: CNVD: CNVD-2018-02819

AFFECTED PRODUCTS

vendor:hoermannmodel:hs5-868-bsscope:eqversion: -

Trust: 1.6

vendor:hoermannmodel:hse1-868-bsscope:eqversion: -

Trust: 1.6

vendor:hoermannmodel:hse2-868-bsscope:eqversion: -

Trust: 1.6

vendor:hoermannmodel:hs5-868-bsscope: - version: -

Trust: 0.8

vendor:hoermannmodel:hse1-868-bsscope: - version: -

Trust: 0.8

vendor:hoermannmodel:hse2-868-bsscope: - version: -

Trust: 0.8

vendor:hoermannmodel:bisecur devicesscope:ltversion:2018

Trust: 0.6

sources: CNVD: CNVD-2018-02819 // JVNDB: JVNDB-2017-011843 // CNNVD: CNNVD-201801-045 // NVD: CVE-2017-17910

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2017-17910
value: MEDIUM

Trust: 1.0

NVD: CVE-2017-17910
value: MEDIUM

Trust: 0.8

CNVD: CNVD-2018-02819
value: LOW

Trust: 0.6

CNNVD: CNNVD-201801-045
value: MEDIUM

Trust: 0.6

VULHUB: VHN-108980
value: LOW

Trust: 0.1

nvd@nist.gov: CVE-2017-17910
severity: LOW
baseScore: 3.3
vectorString: AV:A/AC:L/AU:N/C:N/I:N/A:P
accessVector: ADJACENT_NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: PARTIAL
exploitabilityScore: 6.5
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.8

CNVD: CNVD-2018-02819
severity: LOW
baseScore: 3.3
vectorString: AV:A/AC:L/AU:N/C:N/I:N/A:P
accessVector: ADJACENT_NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: PARTIAL
exploitabilityScore: 6.5
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.6

VULHUB: VHN-108980
severity: LOW
baseScore: 3.3
vectorString: AV:A/AC:L/AU:N/C:N/I:N/A:P
accessVector: ADJACENT_NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: PARTIAL
exploitabilityScore: 6.5
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

nvd@nist.gov: CVE-2017-17910
baseSeverity: MEDIUM
baseScore: 6.5
vectorString: CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
attackVector: ADJACENT
attackComplexity: LOW
privilegesRequired: NONE
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: HIGH
exploitabilityScore: 2.8
impactScore: 3.6
version: 3.0

Trust: 1.8

sources: CNVD: CNVD-2018-02819 // VULHUB: VHN-108980 // JVNDB: JVNDB-2017-011843 // CNNVD: CNNVD-201801-045 // NVD: CVE-2017-17910

PROBLEMTYPE DATA

problemtype:CWE-330

Trust: 1.1

problemtype:CWE-310

Trust: 0.9

sources: VULHUB: VHN-108980 // JVNDB: JVNDB-2017-011843 // NVD: CVE-2017-17910

THREAT TYPE

remote or local

Trust: 0.6

sources: CNNVD: CNNVD-201801-045

TYPE

security feature problem

Trust: 0.6

sources: CNNVD: CNNVD-201801-045

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2017-011843

PATCH
title:Top Pageurl:http://www.hoermann.com
Trust: 0.8
title:Patch for HoermannBiSecur Device Key Acquisition Vulnerabilityurl:https://www.cnvd.org.cn/patchInfo/show/115793
Trust: 0.6
title:Hoermann BiSecur Repair measures for device security vulnerabilitiesurl:http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=77407
Trust: 0.6
sources:
            
            
            CNVD: CNVD-2018-02819 // 
            
            
            
            JVNDB: JVNDB-2017-011843 // 
            
            
            
            CNNVD: CNNVD-201801-045

EXTERNAL IDS
db:NVDid:CVE-2017-17910
Trust: 3.1
db:JVNDBid:JVNDB-2017-011843
Trust: 0.8
db:CNNVDid:CNNVD-201801-045
Trust: 0.7
db:CNVDid:CNVD-2018-02819
Trust: 0.6
db:VULHUBid:VHN-108980
Trust: 0.1
sources:
            
            
            CNVD: CNVD-2018-02819 // 
            
            
            
            VULHUB: VHN-108980 // 
            
            
            
            JVNDB: JVNDB-2017-011843 // 
            
            
            
            CNNVD: CNNVD-201801-045 // 
            
            
            
            NVD: CVE-2017-17910

REFERENCES
url:https://docs.wixstatic.com/ugd/28ba71_6ecc3158975a484d827e935edda4fa17.pdf
Trust: 3.1
url:https://www.trustworks.at/publications
Trust: 1.7
url:https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2017-17910
Trust: 0.8
url:https://nvd.nist.gov/vuln/detail/cve-2017-17910
Trust: 0.8
sources:
            
            
            CNVD: CNVD-2018-02819 // 
            
            
            
            VULHUB: VHN-108980 // 
            
            
            
            JVNDB: JVNDB-2017-011843 // 
            
            
            
            CNNVD: CNNVD-201801-045 // 
            
            
            
            NVD: CVE-2017-17910

SOURCES
db:CNVDid:CNVD-2018-02819
db:VULHUBid:VHN-108980
db:JVNDBid:JVNDB-2017-011843
db:CNNVDid:CNNVD-201801-045
db:NVDid:CVE-2017-17910

LAST UPDATE DATE
2025-04-20T23:34:15.163000+00:00

SOURCES UPDATE DATE
db:CNVDid:CNVD-2018-02819date:2018-02-06T00:00:00
db:VULHUBid:VHN-108980date:2019-10-03T00:00:00
db:JVNDBid:JVNDB-2017-011843date:2018-01-29T00:00:00
db:CNNVDid:CNNVD-201801-045date:2019-10-23T00:00:00
db:NVDid:CVE-2017-17910date:2025-04-20T01:37:25.860

SOURCES RELEASE DATE
db:CNVDid:CNVD-2018-02819date:2018-02-06T00:00:00
db:VULHUBid:VHN-108980date:2017-12-29T00:00:00
db:JVNDBid:JVNDB-2017-011843date:2018-01-29T00:00:00
db:CNNVDid:CNNVD-201801-045date:2018-01-03T00:00:00
db:NVDid:CVE-2017-17910date:2017-12-29T19:29:00.263