What the vulnerability does

01Description

All versions of Telecrane F25 Series Radio Controls before 00.0A use fixed codes that are reproducible by sniffing and re-transmission. This can lead to unauthorized replay of a command, spoofing of an arbitrary message, or keeping the controlled load in a permanent "stop" state.

Key dates

02Disclosure timeline

October 24, 2018 CVE published
September 16, 2024 Record updated