← back
CVE-2022-31463

CVE-2022-31463

CVSS 8.2 HIGHEPSS 1.0%
Owl Labs Meeting Owl 5.2.0.15 does not require a password for Bluetooth commands, because only client-side authentication is used.
CVSS:3.1/AC:L/AV:A/A:N/C:H/I:L/PR:N/S:C/UI:N
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://arstechnica.com/information-technology/2022/06/vulnerabilities-in-meeting-owl-videoconference-device-imperil-100k-users/https://resources.owllabs.com/blog/owl-labs-updatehttps://www.modzero.com/static/meetingowl/Meeting_Owl_Pro_Security_Disclosure_Report_RELEASE.pdf