PT-2019-14465 · Asus · Asus Ts-101+6

Hsuan-Yu

Published

2019-12-20

Updated

2020-01-09

CVE-2019-15911

CVSS v2.0

7.5

High

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions ASUS HG100, MW100, WS-101, TS-101, AS-101, MS-101, DL-101 devices (affected versions not specified)

Description The issue is related to insecure key transport in ZigBee communication, allowing attackers to obtain sensitive information, cause denial of service attacks, take over smart home devices, and tamper with messages.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Cleartext Transmission of Sensitive Information

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-319

Related Identifiers

CVE-2019-15911

Affected Products

Asus As-101

Asus Dl-101

Asus Hg100

Asus Ms-101

Asus Mw100

Asus Ts-101

Asus Ws-101

PT-2019-14465 · Asus · Asus Ts-101+6

CVE-2019-15911

Weakness Enumeration

Related Identifiers

Affected Products

References · 2