Description

The MiCard PLUS Ci and MiCard PLUS BLE reader products developed by rf IDEAS and rebranded by NT-ware have a firmware fault that may result in characters randomly being dropped from some ID card reads, which would result in the wrong ID card number being assigned during ID card self-registration and might result in failed login attempts for end-users. Random characters being dropped from ID card numbers compromises the uniqueness of ID cards that can, therefore, result in a security issue if the users are using the ‘ID card self-registration’ function.

INFO

Published Date :

2024-09-16T06:59:35.306Z

Last Modified :

2024-09-16T14:33:10.067Z

Source :

Canon_EMEA
AFFECTED PRODUCTS

The following products are affected by CVE-2024-1578 vulnerability.

Vendors Products
Nt-ware
  • Micard Plus Ble
  • Micard Plus Ci
Rfideas
  • Micard Plus Ble
  • Micard Plus Ble Firmware
  • Micard Plus Ci
  • Micard Plus Ci Firmware
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-1578.

URL Resource
https://ntware.atlassian.net/wiki/spaces/SA/pages/11973853216/2024+Security+Advisory+Multiple+MiCard+PLUS+card+reader+dropped+characters cve-icon cve-icon
https://www.canon-europe.com/psirt/advisory-information cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Attack Requirements
Privileges Required
User Interaction
VS Confidentiality
VS Integrity
VS Availability
SS Confidentiality
SS Integrity
SS Availability
Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact