CNNVD-202512-1990 Information

CNNVD ID

CNNVD-202512-1990

Related CVE

CVE-2024-2104

• CNNVD Published: 2025-12-10

Description (Chinese)

JBL LIVE PRO 2 TWS是美国JBL公司的一款无线降噪耳机。 JBL LIVE PRO 2 TWS存在访问控制错误漏洞，该漏洞源于BLE安全配置不当，可能导致相邻未经验证的攻击者读写设备控制命令。

Description (English)

JBL Living PRO 2 TWS is a wireless noise-mitigator from JBL in the United States. JBL Live PRO 2 TWS has access control bugs, which stem from the BLE ’ s inappropriate security configuration, which may lead to the adjacent unverified assailant reading and writing device control command.

Hazard Level

Medium

Vulnerability Type

访问控制错误

Affected Vendor

JBL

Published

2025-12-10

Last Modified

2026-02-24

References

https://certvde.com/en/advisories/VDE-2024-076 https://harman.csaf-tp.certvde.com/.well-known/csaf/white/2025/hbsa-2025-0001.json https://access.redhat.com/security/cve/cve-2024-2104