HIGH🇵🇱 Wersja polska

CVE-2013-20003

CVSS 8.3v3.1pub. 2022-02-04upd. 2024-11-21

Z-Wave devices from Sierra Designs (circa 2013) and Silicon Labs (using S0 security) may use a known, shared network key of all zeros, allowing an attacker within radio range to spoof Z-Wave traffic.

CVSS Vector
CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H
  • Silabs Zgm130s037hgn

    HW
    Silabs
    wszystkie wersje
  • Silabs Zgm130s037hgn Firmware

    OS
    Silabs
    s2
  • Silabs Zgm2305a27hgn

    HW
    Silabs
    wszystkie wersje
  • Silabs Zgm2305a27hgn Firmware

    OS
    Silabs
    s2
  • Silabs Zgm230sb27hgn

    HW
    Silabs
    wszystkie wersje
  • Silabs Zgm230sb27hgn Firmware

    OS
    Silabs
    s2
  • Silabs Zm5101

    HW
    Silabs
    wszystkie wersje
  • Silabs Zm5101 Firmware

    OS
    Silabs
    s2
  • Silabs Zm5202

    HW
    Silabs
    wszystkie wersje
  • Silabs Zm5202 Firmware

    OS
    Silabs
    s2
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2024-50920HIGH8.8ten sam produkt

Insecure permissions in Silicon Labs (SiLabs) Z-Wave Series 700 and 800 v7.21.1 allow attackers to create a fa...

CVE-2024-50930HIGH8.8ten sam produkt

An issue in Silicon Labs Z-Wave Series 500 v6.84.0 allows attackers to execute arbitrary code.

CVE-2018-25029HIGH8.1ten sam produkt

The Z-Wave specification requires that S2 security can be downgraded to S0 or other less secure protocols, all...

CVE-2024-50928MEDIUM6.5ten sam produkt

Insecure permissions in Silicon Labs (SiLabs) Z-Wave Series 700 and 800 v7.21.1 allow attackers to change the ...

CVE-2024-50929MEDIUM6.2ten sam produkt

Insecure permissions in Silicon Labs (SiLabs) Z-Wave Series 700 and 800 v7.21.1 allow attackers to arbitrarily...