CVE-2020-9061

Name of the Vulnerable Software and Affected Versions Z-Wave devices using Silicon Labs 500 and 700 series chipsets versions (affected versions not specified) SiLabs UZB-7 version 7.00 ZooZ ZST10 version 6.04 Aeon Labs ZW090-A version 3.95 Samsung STH-ETH-200 version 6.04

Description The issue affects Z-Wave devices using Silicon Labs 500 and 700 series chipsets, making them susceptible to denial of service via malformed routing messages.

Recommendations For SiLabs UZB-7 version 7.00, consider disabling the routing message handling functionality until a patch is available. For ZooZ ZST10 version 6.04, restrict access to the device to minimize the risk of exploitation. For Aeon Labs ZW090-A version 3.95, avoid processing malformed routing messages until the issue is resolved. For Samsung STH-ETH-200 version 6.04, limit the device's exposure to potentially malicious routing messages. At the moment, there is no information about a newer version that contains a fix for this vulnerability.