Tinxy WiFi Lock Controller Unsecured Transmission of Sensitive Information

Vulnerability

A vulnerability exists in the Tinxy WiFi Lock Controller version 1 RF, where sensitive information, including control data and device credentials, is transmitted in plaintext. This lack of encryption exposes the data to potential interception by attackers, allowing for unauthorized access to sensitive information through a man-in-the-middle attack.

Impact

Exploitation of this vulnerability could lead to interception of unencrypted data, including control commands and sensitive credentials, which could be used to manipulate the device or gain unauthorized access to networks or services.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

3.1

exploitability

6.0

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

3.1

exploitability

6.0

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Tinxy WiFi Lock Controller Unsecured Transmission of Sensitive Information

Vulnerability

Impact

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating