Sceiner firmware locks and associated devices are vulnerable to encryption downgrade and arbitrary file upload attacks
Posted: Mon Feb 03, 2025 10:17 am
Sciener is a company that develops software and hardware for electronic locks that are marketed under many different brands. Their hardware works in tandem with an app, called the TTLock app, which is also produced by Sciener. The TTLock app utilizes Bluetooth connections to connect to locks that utilize the Sciener firmware, and allows for manipulation of the lock. Sceiner firmware locks also supports peripherals. The GatewayG2, also produced by Sciener, allows for connection to an appropriate lock through the TTLock app through WiFi. Sciener firmware also allows wireless keypad connection to supported devices.
https://www.kb.cert.org/vuls/id/949046
https://www.kb.cert.org/vuls/id/949046