{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-24T06:40:10.025","vulnerabilities":[{"cve":{"id":"CVE-2022-32502","sourceIdentifier":"cve@mitre.org","published":"2024-05-14T10:43:40.783","lastModified":"2026-06-17T04:47:25.497","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"An issue was discovered on certain Nuki Home Solutions devices. There is a buffer overflow over the encrypted token parsing logic in the HTTP service that allows remote code execution. This affects Nuki Bridge v1 before 1.22.0 and v2 before 2.13.2."},{"lang":"es","value":"Se ha descubierto un problema en determinados dispositivos de Nuki Home Solutions. Hay un desbordamiento del búfer sobre la lógica de análisis del token cifrado en el servicio HTTP que permite la ejecución remota de código. Esto afecta a Nuki Bridge v1 anterior a 1.22.0 y v2 anterior a 2.13.2."}],"affected":[{"source":"cve@mitre.org","affectedData":[{"vendor":"n/a","product":"n/a","versions":[{"version":"n/a","status":"affected"}]}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","affectedData":[{"vendor":"nuki","product":"nuki_smart_lock","defaultStatus":"unknown","cpes":["cpe:2.3:a:nuki:nuki_smart_lock:2.0:*:*:*:*:*:*:*"],"versions":[{"version":"0","lessThan":"1.22.0","versionType":"custom","status":"affected"},{"version":"0","lessThan":"2.13.2","versionType":"custom","status":"affected"}]}]}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L","baseScore":6.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"LOW"},"exploitabilityScore":2.8,"impactScore":3.4}],"ssvcV203":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","ssvcData":{"timestamp":"2024-06-18T15:31:08.771490Z","id":"CVE-2022-32502","options":[{"exploitation":"none"},{"automatable":"no"},{"technicalImpact":"total"}],"role":"CISA Coordinator","version":"2.0.3"}}]},"weaknesses":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-121"}]}],"references":[{"url":"https://latesthackingnews.com/2022/07/28/multiple-security-flaws-found-in-nuki-smart-locks/","source":"cve@mitre.org"},{"url":"https://nuki.io/en/security-updates/","source":"cve@mitre.org"},{"url":"https://research.nccgroup.com/2022/07/25/technical-advisory-multiple-vulnerabilities-in-nuki-smart-locks-cve-2022-32509-cve-2022-32504-cve-2022-32502-cve-2022-32507-cve-2022-32503-cve-2022-32510-cve-2022-32506-cve-2022-32508-cve-2/","source":"cve@mitre.org"},{"url":"https://www.hackread.com/nuki-smart-locks-vulnerabilities-plethora-attack-options/","source":"cve@mitre.org"},{"url":"https://latesthackingnews.com/2022/07/28/multiple-security-flaws-found-in-nuki-smart-locks/","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://nuki.io/en/security-updates/","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://research.nccgroup.com/2022/07/25/technical-advisory-multiple-vulnerabilities-in-nuki-smart-locks-cve-2022-32509-cve-2022-32504-cve-2022-32502-cve-2022-32507-cve-2022-32503-cve-2022-32510-cve-2022-32506-cve-2022-32508-cve-2/","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://www.hackread.com/nuki-smart-locks-vulnerabilities-plethora-attack-options/","source":"af854a3a-2127-422b-91ae-364da2661108"}]}}]}