Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Touchlink authentication bypass due to packets processed after timeout or out of range in Ember ZNet
Vulnerability Description
TouchLink packets processed after timeout or out of range due to Operation on a Resource after Expiration and Missing Release of Resource after Effective Lifetime may allow a device to be added outside of valid TouchLink range or pairing duration This issue affects Ember ZNet 7.1.x from 7.1.3 through 7.1.5; 7.2.x from 7.2.0 through 7.2.3; Version 7.3 and later are unaffected
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
Vulnerability Type
通信信道源的不正确验证
Vulnerability Title
Silicon Labs EmberZNet 安全漏洞
Vulnerability Description
Silicon Labs EmberZNet是美国芯科科技(Silicon Labs)公司的一个完整的 Zigbee 协议软件包,包含 Silicon Labs Ember 平台上稳健可靠的网状网络应用所需的所有元素。 Silicon Labs EmberZNet 7.1.3 到 7.1.5版本、7.2.0 到 7.2.3版本、7.3及之前版本存在安全漏洞。目前尚无此漏洞的相关信息,请随时关注CNNVD或厂商公告。
CVSS Information
N/A
Vulnerability Type
N/A