The Z-Wave specification requires that S2 security can be downgraded to S0 or other less secure protocols, allowing an attacker within radio range during pairing to downgrade and then exploit a different vulnerability (CVE-2013-20003) to intercept and spoof traffic.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
silabs zgm130s037hgn_firmware s2 |
||
silabs zm5202_firmware s2 |
||
silabs zm5101_firmware s2 |
||
silabs zgm2305a27hgn_firmware s2 |
||
silabs zgm230sb27hgn_firmware s2 |