Replay Attack Vulnerability in Fujitsu Wireless Keyboard Set LX390 GK381
CVE-2019-18199

6.6MEDIUM

Key Information:

Vendor

Fujitsu

Status
Lx390 Firmware
Vendor
CVE Published:
24 October 2019

What is CVE-2019-18199?

The Fujitsu Wireless Keyboard Set LX390 GK381 has a vulnerability that arises from inadequate encryption of its 2.4 GHz communication link. This flaw permits attackers to execute replay attacks, taking advantage of the device's reliance on password-based authentication. Without robust encryption protocols in place, sensitive data transmitted can be intercepted and reused by malicious actors, posing significant risks to user security.

References

https://www.syss.de/fileadmin/dokumente/Publikationen/Adv...
x_refsource_MISC
http://packetstormsecurity.com/files/154954/Fujitsu-Wirel...
x_refsource_MISC
https://www.syss.de/pentest-blog/2019/syss-2019-009-syss-...
x_refsource_MISC

CVSS V3.1

Score:
6.6
Severity:
MEDIUM
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Physical
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.
CVE-2019-18199 : Replay Attack Vulnerability in Fujitsu Wireless Keyboard Set LX390 GK381