Details of VAR-201712-1109

ID

VAR-201712-1109

CVE

CVE-2017-8867

TITLE

Elemental Path of CogniToys Dino Smart toy firmware key management error vulnerability

Trust: 0.8

sources: JVNDB: JVNDB-2017-011563

DESCRIPTION

Elemental Path's CogniToys Dino smart toys through firmware version 0.0.794 use AES-128 with ECB mode to encrypt voice traffic between the device and remote server, allowing a malicious user to map encrypted traffic to a particular AES key index and gaining further access to eavesdrop on privacy-sensitive voice communication of a child and their Dino device. Elemental Path of CogniToys Dino Smart toy (smart toy) Vulnerabilities exist in vulnerabilities related to key management errors.Information may be obtained. ElementalPath'sCogniToysDino is a smart toy from EElementalPath's in the United States that can communicate with children. An information disclosure vulnerability exists in ElementalPathCogniToysDino that uses firmware version 0.0.794 and earlier. The vulnerability stems from the program using AES-128 encrypted voice traffic with ECB mode. An attacker could exploit this vulnerability to map specially crafted traffic to an AES key index and listen for sensitive voice traffic

Trust: 2.25

sources: NVD: CVE-2017-8867 // JVNDB: JVNDB-2017-011563 // CNVD: CNVD-2018-00677 // VULHUB: VHN-117070

IOT TAXONOMY

category:

['Network device']

sub_category:

Trust: 0.6

sources: CNVD: CNVD-2018-00677

AFFECTED PRODUCTS

vendor:	cognitoys	model:	stemosaur	scope:	lte	version:	0.0.794	Trust: 1.0
vendor:	elemental path	model:	stemosaur	scope:	-	version:	-	Trust: 0.8
vendor:	elemental	model:	path's cogni toys dino	scope:	lte	version:	<=0.0.794	Trust: 0.6
vendor:	cognitoys	model:	stemosaur	scope:	eq	version:	0.0.794	Trust: 0.6

sources: CNVD: CNVD-2018-00677 // JVNDB: JVNDB-2017-011563 // CNNVD: CNNVD-201705-546 // NVD: CVE-2017-8867

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2017-8867
value:	MEDIUM
Trust: 1.0
NVD:	CVE-2017-8867
value:	MEDIUM
Trust: 0.8
CNVD:	CNVD-2018-00677
value:	MEDIUM
Trust: 0.6
CNNVD:	CNNVD-201705-546
value:	MEDIUM
Trust: 0.6
VULHUB:	VHN-117070
value:	MEDIUM
Trust: 0.1

nvd@nist.gov:	CVE-2017-8867
severity:	MEDIUM
baseScore:	4.3
vectorString:	AV:N/AC:M/AU:N/C:P/I:N/A:N
accessVector:	NETWORK
accessComplexity:	MEDIUM
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	8.6
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.8
CNVD:	CNVD-2018-00677
severity:	MEDIUM
baseScore:	4.3
vectorString:	AV:N/AC:M/AU:N/C:P/I:N/A:N
accessVector:	NETWORK
accessComplexity:	MEDIUM
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	8.6
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6
VULHUB:	VHN-117070
severity:	MEDIUM
baseScore:	4.3
vectorString:	AV:N/AC:M/AU:N/C:P/I:N/A:N
accessVector:	NETWORK
accessComplexity:	MEDIUM
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	8.6
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

nvd@nist.gov:	CVE-2017-8867
baseSeverity:	MEDIUM
baseScore:	5.9
vectorString:	CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
attackVector:	NETWORK
attackComplexity:	HIGH
privilegesRequired:	NONE
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	2.2
impactScore:	3.6
version:	3.0
Trust: 1.8

sources: CNVD: CNVD-2018-00677 // VULHUB: VHN-117070 // JVNDB: JVNDB-2017-011563 // CNNVD: CNNVD-201705-546 // NVD: CVE-2017-8867

PROBLEMTYPE DATA

problemtype:	NVD-CWE-noinfo	Trust: 1.0
problemtype:	CWE-320	Trust: 0.9

sources: VULHUB: VHN-117070 // JVNDB: JVNDB-2017-011563 // NVD: CVE-2017-8867

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201705-546

TYPE

lack of information

Trust: 0.6

sources: CNNVD: CNNVD-201705-546

CONFIGURATIONS

sources: JVNDB: JVNDB-2017-011563

PATCH

title:

Top Page

url:

http://elementalpath.com/

Trust: 0.8

sources: JVNDB: JVNDB-2017-011563

EXTERNAL IDS

db:	NVD	id:	CVE-2017-8867	Trust: 3.1
db:	JVNDB	id:	JVNDB-2017-011563	Trust: 0.8
db:	CNNVD	id:	CNNVD-201705-546	Trust: 0.7
db:	CNVD	id:	CNVD-2018-00677	Trust: 0.6
db:	VULHUB	id:	VHN-117070	Trust: 0.1

sources: CNVD: CNVD-2018-00677 // VULHUB: VHN-117070 // JVNDB: JVNDB-2017-011563 // CNNVD: CNNVD-201705-546 // NVD: CVE-2017-8867

REFERENCES

url:	https://dl.acm.org/citation.cfm?id=3139947	Trust: 2.5
url:	https://nvd.nist.gov/vuln/detail/cve-2017-8867	Trust: 1.4
url:	https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2017-8867	Trust: 0.8

sources: CNVD: CNVD-2018-00677 // VULHUB: VHN-117070 // JVNDB: JVNDB-2017-011563 // CNNVD: CNNVD-201705-546 // NVD: CVE-2017-8867

SOURCES

db:	CNVD	id:	CNVD-2018-00677
db:	VULHUB	id:	VHN-117070
db:	JVNDB	id:	JVNDB-2017-011563
db:	CNNVD	id:	CNNVD-201705-546
db:	NVD	id:	CVE-2017-8867

LAST UPDATE DATE

2025-04-20T23:32:46.491000+00:00

SOURCES UPDATE DATE

db:	CNVD	id:	CNVD-2018-00677	date:	2018-01-10T00:00:00
db:	VULHUB	id:	VHN-117070	date:	2019-10-03T00:00:00
db:	JVNDB	id:	JVNDB-2017-011563	date:	2018-01-18T00:00:00
db:	CNNVD	id:	CNNVD-201705-546	date:	2019-10-23T00:00:00
db:	NVD	id:	CVE-2017-8867	date:	2025-04-20T01:37:25.860

SOURCES RELEASE DATE

db:	CNVD	id:	CNVD-2018-00677	date:	2018-01-10T00:00:00
db:	VULHUB	id:	VHN-117070	date:	2017-12-11T00:00:00
db:	JVNDB	id:	JVNDB-2017-011563	date:	2018-01-18T00:00:00
db:	CNNVD	id:	CNNVD-201705-546	date:	2017-05-11T00:00:00
db:	NVD	id:	CVE-2017-8867	date:	2017-12-11T21:29:00.860