Skip to main content

Optima Eaf 100 Firmware CVE-2021-20107

MEDIUM
Missing Authentication for Critical Function (CWE-306)
2021-06-30 vulnreport@tenable.com
Information Disclosure Authentication Bypass Optima Eaf 100 Firmware Optima Eaf 150 Firmware Optima Eaf 200 Firmware Optima Eaf 225 Firmware Optima Eaf 250 Firmware Optima Eaf 275 Firmware Optima Eaf 350 Firmware Optima Eaf 700 Firmware Optima Eaf 750 Firmware Optima Ebf 187 Firmware Optima Ebf 415 Firmware Optima Ebf 425 Firmware Optima Ebf 550 Firmware Optima Ebf 615 Firmware Optima Ebf 650 Firmware Optima Ebf 665 Firmware Optima Ebf 750 Firmware Optima Ebf 775 Firmware Optima Ebf 85 Firmware Optima Ebf 850 Firmware Optima Etf 610 Firmware Optima Etf 600 Firmware Optima Etf 410 Firmware Optima Etf 420 Firmware Optima Etf 500 Firmware Optima Etf 660 Firmware Optima Etf 700 Firmware Optima Etf 770 Firmware Optima Etf 80 Firmware Optima Etf 800 Firmware Optima Etf 880 Firmware Basys Efx 300 Firmware Basys Efx 350 Firmware Basys Efx 375 Firmware Basys Efx 377 Firmware Basys Efx 380 Firmware Basys Efx 600 Firmware Basys Efx 650 Firmware Basys Efx 675 Firmware Basys Efx 677 Firmware Basys Efx 680 Firmware Basys Efx 200 Firmware Basys Efx 250 Firmware Basys Efx 275 Firmware Basys Efx 277 Firmware Basys Efx 280 Firmware Basys Efx 100 Firmware Basys Efx 150 Firmware Basys Efx 175 Firmware Basys Efx 177 Firmware Basys Efx 180 Firmware Basys Efx 800 Firmware Basys Efx 850 Firmware Solis 8111 Firmware Solis 8186 Firmware Solis Ress C Firmware Solis Ress U Firmware Solis 8152 Firmware Solis 8195 Firmware Solis 8115 Firmware Solis 8110 Firmware Solis 8180 Firmware Solis 8113 Firmware Solis 8137 Firmware Solis Bpw 8000 Firmware Solis 8116 Firmware Solis 8111 Bt Firmware Solis 8153 Firmware Solis 8186 Bt Firmware Solis Ress C Bt Firmware Solis Ress U Bt Firmware
5.4
CVSS 3.1 · NVD
Share

Severity by source

NVD PRIMARY
5.4 MEDIUM
AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
Attack Vector
Adjacent
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
Low
Integrity
Low
Availability
None

Lifecycle Timeline

1
CVE Published
Jun 30, 2021 - 14:15 nvd
MEDIUM 5.4

DescriptionNVD

There exists an unauthenticated BLE Interface in Sloan SmartFaucets including Optima EAF, Optima ETF/EBF, BASYS EFX, and Flushometers including SOLIS. The vulnerability allows for unauthenticated kinetic effects and information disclosure on the faucets. It is possible to use the Bluetooth Low Energy (BLE) connectivity to read and write to many BLE characteristics on the device. Some of these control the flow of water, the sensitivity of the sensors, and information about maintenance.

AnalysisAI

There exists an unauthenticated BLE Interface in Sloan SmartFaucets including Optima EAF, Optima ETF/EBF, BASYS EFX, and Flushometers including SOLIS. Rated medium severity (CVSS 5.4), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Technical ContextAI

This vulnerability is classified as Missing Authentication for Critical Function (CWE-306), which allows attackers to access critical functionality without authentication. There exists an unauthenticated BLE Interface in Sloan SmartFaucets including Optima EAF, Optima ETF/EBF, BASYS EFX, and Flushometers including SOLIS. The vulnerability allows for unauthenticated kinetic effects and information disclosure on the faucets. It is possible to use the Bluetooth Low Energy (BLE) connectivity to read and write to many BLE characteristics on the device. Some of these control the flow of water, the sensitivity of the sensors, and information about maintenance. Affected products include: Sloan Optima Eaf-100 Firmware, Sloan Optima Eaf-150 Firmware, Sloan Optima Eaf-200 Firmware, Sloan Optima Eaf-225 Firmware, Sloan Optima Eaf-250 Firmware.

RemediationAI

No vendor patch is available at time of analysis. Monitor vendor advisories for updates. Require authentication for all sensitive operations, implement defense in depth.

Share

CVE-2021-20107 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy