Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A replay attack vulnerability was discovered in a Zigbee smart home kit manufactured by Ksix (Zigbee Gateway Module = v1.0.3, Door Sensor = v1.0.7, Motion Sensor = v1.0.12), where the Zigbee anti-replay mechanism - based on the frame counter field - is improperly implemented. As a result, an attacker within wireless range can resend captured packets with a higher sequence number, which the devices incorrectly accept as legitimate messages. This allows spoofed commands to be injected without authentication, triggering false alerts and misleading the user through notifications in the mobile application used to monitor the network.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
ZigBee 安全漏洞
Vulnerability Description
ZigBee是ZigBee开源的一种低速短距离传输的无线网络协议。 Zigbee v1.0.3版本存在安全漏洞,该漏洞源于Zigbee防重放机制实现不当,可能导致重放攻击。
CVSS Information
N/A
Vulnerability Type
N/A