CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-9060

Z-Wave devices based on Silicon Labs 500 series chipsets using S2, including but likely not limited to the ZooZ ZST10 version 6.04, ZooZ ZEN20 version 5.03, ZooZ ZEN25 version 5.03, Aeon Labs ZW090-A version 3.95, and Fibaro FGWPB-111 version 4.3, are susceptible to denial of service and resource exhaustion via malformed SECURITY NONCE GET, SECURITY NONCE GET 2, NO OPERATION, or NIF REQUEST messages.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 17.7%

CVSS Severity

CVSS v3 Score 6.5

CVSS v2 Score 6.1

References

Products affected by CVE-2020-9060

Aeotec » Zw090-A » Version: 3.95

cpe:2.3:o:aeotec:zw090-a:3.95
Fibaro » Fgwpb-111 » Version: 4.3

cpe:2.3:o:fibaro:fgwpb-111:4.3
Silabs » 500 Series Firmware » Version: Any

cpe:2.3:o:silabs:500_series_firmware:*
Zooz » Zen20 » Version: 5.03

cpe:2.3:o:zooz:zen20:5.03
Zooz » Zen25 » Version: 5.03

cpe:2.3:o:zooz:zen25:5.03
Zooz » Zst10 » Version: 6.04

cpe:2.3:o:zooz:zst10:6.04

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-9060

Products

Pricing

Contact Us