PT-2019-14465 · Asus · Asus Ts-101+6

Hsuan-Yu

Publicado

2019-12-20

Atualizado

2020-01-09

CVE-2019-15911

CVSS v2.0

7.5

Alta

Vetor

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions ASUS HG100, MW100, WS-101, TS-101, AS-101, MS-101, DL-101 devices (affected versions not specified)

Description The issue is related to insecure key transport in ZigBee communication, allowing attackers to obtain sensitive information, cause denial of service attacks, take over smart home devices, and tamper with messages.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Cleartext Transmission of Sensitive Information

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-319

Identificadores relacionados

CVE-2019-15911

Produtos afetados

Asus As-101

Asus Dl-101

Asus Hg100

Asus Ms-101

Asus Mw100

Asus Ts-101

Asus Ws-101

PT-2019-14465 · Asus · Asus Ts-101+6

CVE-2019-15911

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 2