vendor:
MIFARE Classic
by:
SecurityFocus
7.5
CVSS
HIGH
Multiple Security Weaknesses
310
CWE
Product Name: MIFARE Classic
Affected Version From: N/A
Affected Version To: N/A
Patch Exists: NO
Related CWE: N/A
CPE: N/A
Metasploit:
N/A
Other Scripts:
N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References:
N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2008
MIFARE Classic Security Weaknesses
MIFARE Classic is prone to multiple security weaknesses, which include a security weakness that may allow attackers to recover the internal state of the linear feedback shift register, a security weakness that may allow attackers to recover the previous state of the linear feedback shift register, a security weakness that may allow attackers to invert the filter function and potentially gain access to the private key, and a security weakness that may allow attackers to reduce the search space for tag nonces. Exploiting these issues in combination may allow attackers with physical access to an RFID reader to bypass certain physical security restrictions.
Mitigation:
Implementing strong authentication and access control measures can help to mitigate the risk of exploitation.
