PT-2019-14466 · Zigbee+1 · Zigbee Pro+7

Hsuan-Yu

Published

2019-12-20

Updated

2020-01-07

CVE-2019-15912

CVSS v2.0

5.0

Medium

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:P

Name of the Vulnerable Software and Affected Versions ASUS HG100, MW100, WS-101, TS-101, AS-101, MS-101, DL-101 devices (affected versions not specified)

Description An issue was discovered that allows attackers to perform multiple denial of service attacks using the ZigBee trust center rejoin procedure on devices using ZigBee PRO.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-20

Related Identifiers

CVE-2019-15912

Affected Products

Asus As-101

Asus Dl-101

Asus Hg100

Asus Ms-101

Asus Mw100

Asus Ts-101

Asus Ws-101

Zigbee Pro

PT-2019-14466 · Zigbee+1 · Zigbee Pro+7

CVE-2019-15912

Weakness Enumeration

Related Identifiers

Affected Products

References · 3