Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistCertccCVELIST:CVE-2020-10137
HistoryJan 09, 2022 - 4:15 a.m.

CVE-2020-10137

2022-01-0904:15:13
CWE-345
certcc
www.cve.org
5
z-wave
silicon labs
700 series
s2
authentication
encryption
find_node_in_range
remote attacker
denial of service

AI Score

7.2

Confidence

High

EPSS

0.004

Percentile

74.2%

JSON

Z-Wave devices based on Silicon Labs 700 series chipsets using S2 do not adequately authenticate or encrypt FIND_NODE_IN_RANGE frames, allowing a remote, unauthenticated attacker to inject a FIND_NODE_IN_RANGE frame with an invalid random payload, denying service by blocking the processing of upcoming events.

CNA Affected

[
  {
    "product": "UZB-7",
    "vendor": "Silicon Labs",
    "versions": [
      {
        "status": "affected",
        "version": "7.00"
      }
    ]
  }
]

Related

cve 1
nvd 1
prion 1
cert 1
cve
cve
CVE-2020-10137
2022-01-10 14:10:15
nvd
nvd
CVE-2020-10137
2022-01-10 14:10:15
prion
prion
Design/Logic Flaw
2022-01-10 14:10:00
cert
cert
Silicon Labs Z-Wave chipsets contain multiple vulnerabilities
2022-01-07 00:00:00

AI Score

7.2

Confidence

High

EPSS

0.004

Percentile

74.2%

JSON
Related for CVELIST:CVE-2020-10137
cve1nvd1prion1cert1