PT-2020-8415 · Digi · Digi Xbee 2

Published

2020-05-21

Updated

2020-05-22

CVE-2017-18868

CVSS v2.0

5.5

Medium

Vector

AV:N/AC:L/Au:S/C:N/I:P/A:P

Name of the Vulnerable Software and Affected Versions: Digi XBee 2 devices (affected versions not specified)

Description: The issue is related to the network stack upon which the ZigBee protocol is built, causing Digi XBee 2 devices to lack an effective protection mechanism against remote AT commands.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Incorrect Default Permissions

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-276

Related Identifiers

CVE-2017-18868

Affected Products

Digi Xbee 2

PT-2020-8415 · Digi · Digi Xbee 2

CVE-2017-18868

Weakness Enumeration

Related Identifiers

Affected Products

References · 4