Posted by Kenneth Buckler on Dec 09

*Overview*

Keurig 2.0 Coffee Maker contains a vulnerability in which the authenticity
of coffee pods, known as K-Cups, uses weak verification methods, which are
subject to a spoofing attack through re-use of a previously verified K-Cup.

*Impact*

CVSS Base Score: 4.9

Impact Subscore: 6.9

Exploitability Subscore: 3.9

Access Vector: Local

Access Complexity: Low

Authentication: None

Confidentiality Impact: None

Integrity Impact: Complete…