Vulnerability Description
An issue was discovered on Xiaomi DGNWG03LM, ZNCZ03LM, MCCGQ01LM, WSDCGQ01LM, RTCGQ01LM devices. Attackers can use the ZigBee trust center rejoin procedure to perform mutiple denial of service attacks.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Mi | Dgnwg03Lm Firmware | - |
| Mi | Dgnwg03Lm | - |
| Mi | Zncz03Lm Firmware | - |
| Mi | Zncz03Lm | - |
| Mi | Mccgq01Lm Firmware | - |
| Mi | Mccgq01Lm | - |
| Mi | Wsdcgq01Lm Firmware | - |
| Mi | Wsdcgq01Lm | - |
| Mi | Rtcgq01Lm Firmware | - |
| Mi | Rtcgq01Lm | - |
Related Weaknesses (CWE)
References
- https://github.com/chengcheng227/CVE-POC/blob/master/CVE-2019-15914_1.mdExploitThird Party Advisory
- https://github.com/chengcheng227/CVE-POC/blob/master/CVE-2019-15914_2.mdExploitThird Party Advisory
- https://github.com/chengcheng227/CVE-POC/blob/master/CVE-2019-15914_1.mdExploitThird Party Advisory
- https://github.com/chengcheng227/CVE-POC/blob/master/CVE-2019-15914_2.mdExploitThird Party Advisory
FAQ
What is CVE-2019-15914?
CVE-2019-15914 is a vulnerability with a CVSS score of 7.5 (HIGH). An issue was discovered on Xiaomi DGNWG03LM, ZNCZ03LM, MCCGQ01LM, WSDCGQ01LM, RTCGQ01LM devices. Attackers can use the ZigBee trust center rejoin procedure to perform mutiple denial of service attacks...
How severe is CVE-2019-15914?
CVE-2019-15914 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2019-15914?
Check the references section above for vendor advisories and patch information. Affected products include: Mi Dgnwg03Lm Firmware, Mi Dgnwg03Lm, Mi Zncz03Lm Firmware, Mi Zncz03Lm, Mi Mccgq01Lm Firmware.