Vulnerability Description
The Z-Wave specification requires that S2 security can be downgraded to S0 or other less secure protocols, allowing an attacker within radio range during pairing to downgrade and then exploit a different vulnerability (CVE-2013-20003) to intercept and spoof traffic.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Silabs | Zgm130S037Hgn Firmware | s2 |
| Silabs | Zgm130S037Hgn | - |
| Silabs | Zm5202 Firmware | s2 |
| Silabs | Zm5202 | - |
| Silabs | Zm5101 Firmware | s2 |
| Silabs | Zm5101 | - |
| Silabs | Zgm2305A27Hgn Firmware | s2 |
| Silabs | Zgm2305A27Hgn | - |
| Silabs | Zgm230Sb27Hgn Firmware | s2 |
| Silabs | Zgm230Sb27Hgn | - |
Related Weaknesses (CWE)
References
- https://community.silabs.com/s/share/a5U1M000000knqNUAQ/updated-your-zwave-smartThird Party Advisory
- https://www.pentestpartners.com/security-blog/z-shave-exploiting-z-wave-downgradExploitThird Party Advisory
- https://community.silabs.com/s/share/a5U1M000000knqNUAQ/updated-your-zwave-smartThird Party Advisory
- https://www.pentestpartners.com/security-blog/z-shave-exploiting-z-wave-downgradExploitThird Party Advisory
FAQ
What is CVE-2018-25029?
CVE-2018-25029 is a vulnerability with a CVSS score of 8.1 (HIGH). The Z-Wave specification requires that S2 security can be downgraded to S0 or other less secure protocols, allowing an attacker within radio range during pairing to downgrade and then exploit a differ...
How severe is CVE-2018-25029?
CVE-2018-25029 has been rated HIGH with a CVSS base score of 8.1/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2018-25029?
Check the references section above for vendor advisories and patch information. Affected products include: Silabs Zgm130S037Hgn Firmware, Silabs Zgm130S037Hgn, Silabs Zm5202 Firmware, Silabs Zm5202, Silabs Zm5101 Firmware.