Publication detail

CVE-2021-34571, CVE-2021-34572, CVE-2021-34573, CVE-2021-34576

POLČÁK, L.

Original Title

CVE-2021-34571, CVE-2021-34572, CVE-2021-34573, CVE-2021-34576

Type

report

Language

English

Original Abstract

We analyzed water metering systems deployed in residential buildings. During the research, we revealed vulnerabilities as a consquence of violating CEN standards, for example shared keys without the posibility of customization, broken integrity and confidentiality of the readouts. We reported the vulnerabilities to the CVE database: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-34571 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-34572 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-34573 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-34576 We published security advisories: https://www.fit.vutbr.cz/~polcak/CVE-2021-34571.en https://www.fit.vutbr.cz/~polcak/CVE-2021-34572.en https://www.fit.vutbr.cz/~polcak/CVE-2021-34573.en https://www.fit.vutbr.cz/~polcak/CVE-2021-34576.en https://www.fit.vutbr.cz/~polcak/CVE-2021-34577.en

Authors

POLČÁK, L.

Released

1. 9. 2021

Location

Frankfurt am Main

Pages count

4

BibTex

@techreport{BUT172514,
  author="Libor {Polčák}",
  title="CVE-2021-34571, CVE-2021-34572, CVE-2021-34573, CVE-2021-34576",
  year="2021",
  address="Frankfurt am Main",
  pages="4"
}