CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-25029

The Z-Wave specification requires that S2 security can be downgraded to S0 or other less secure protocols, allowing an attacker within radio range during pairing to downgrade and then exploit a different vulnerability (CVE-2013-20003) to intercept and spoof traffic.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 27.6%

CVSS Severity

CVSS v3 Score 8.1

CVSS v2 Score 4.8

References

Products affected by CVE-2018-25029

Silabs » Zgm130s037hgn » Version: N/A

cpe:2.3:h:silabs:zgm130s037hgn:-
Silabs » Zgm2305a27hgn » Version: N/A

cpe:2.3:h:silabs:zgm2305a27hgn:-
Silabs » Zgm230sb27hgn » Version: N/A

cpe:2.3:h:silabs:zgm230sb27hgn:-
Silabs » Zm5101 » Version: N/A

cpe:2.3:h:silabs:zm5101:-
Silabs » Zm5202 » Version: N/A

cpe:2.3:h:silabs:zm5202:-
Silabs » Zgm130s037hgn Firmware » Version: s2

cpe:2.3:o:silabs:zgm130s037hgn_firmware:s2
Silabs » Zgm2305a27hgn Firmware » Version: s2

cpe:2.3:o:silabs:zgm2305a27hgn_firmware:s2
Silabs » Zgm230sb27hgn Firmware » Version: s2

cpe:2.3:o:silabs:zgm230sb27hgn_firmware:s2
Silabs » Zm5101 Firmware » Version: s2

cpe:2.3:o:silabs:zm5101_firmware:s2
Silabs » Zm5202 Firmware » Version: s2

cpe:2.3:o:silabs:zm5202_firmware:s2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-25029

Products

Pricing

Contact Us