CVE-2021-35951 Information

Description

fastrack Reflex 2.0 W307S_REFLEX_v90.89 Activity Tracker allows an Unauthenticated Remote attacker to send a malicious firmware update via BLE and brick the device.

Reference

https://www.fastrack.in/shop/watch-smart-wearables-reflex-2 https://payatu.com/advisory/fastrack-reflex-unauthenticated-firmware-update