Primary

Context

Inaba Denki Sangyo CHOCO TEI WATCHER Mini Password Storage Vulnerability

Vulnerability

A vulnerability exists in the CHOCO TEI WATCHER mini (IB-MCT001) in all versions, allowing an attacker with access to the device's microSD card to retrieve the login password. This issue arises from storing passwords in a recoverable format, creating a risk of unauthorized password extraction.

Impact

Exploitation of this vulnerability enables an attacker to obtain the product's login password from the microSD card.

Remediation

To mitigate this vulnerability, restrict the device's operation to authorized users only. Since the microSD card cannot be encrypted, it should be physically secured to prevent unauthorized removal or tampering. Regular inspections can help ensure the device and its storage remain intact.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

4.3

remediation

0.0

relevance

0.0

threat

4.8

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

4.3

remediation

0.0

relevance

0.0

threat

4.8

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Inaba Denki Sangyo CHOCO TEI WATCHER Mini Password Storage Vulnerability

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating