Vulnerability Description
A replay attack vulnerability was discovered in a Zigbee smart home kit manufactured by Ksix (Zigbee Gateway Module = v1.0.3, Door Sensor = v1.0.7, Motion Sensor = v1.0.12), where the Zigbee anti-replay mechanism - based on the frame counter field - is improperly implemented. As a result, an attacker within wireless range can resend captured packets with a higher sequence number, which the devices incorrectly accept as legitimate messages. This allows spoofed commands to be injected without authentication, triggering false alerts and misleading the user through notifications in the mobile application used to monitor the network.
CVSS Score
CRITICAL
Related Weaknesses (CWE)
References
- https://github.com/TheMalwareGuardian/CVE-2021-27289
- https://packetstormsecurity.com/files/160331/Ksix-Zigbee-Devices-Playback-Protec
- https://www.exploit-db.com/exploits/49169
- https://www.youtube.com/watch?v=5IFUpRKEioA
- https://www.youtube.com/watch?v=XFOy3wSlC9Q
- https://www.youtube.com/watch?v=yc9IEt5IMmA
FAQ
What is CVE-2021-27289?
CVE-2021-27289 is a vulnerability with a CVSS score of 9.1 (CRITICAL). A replay attack vulnerability was discovered in a Zigbee smart home kit manufactured by Ksix (Zigbee Gateway Module = v1.0.3, Door Sensor = v1.0.7, Motion Sensor = v1.0.12), where the Zigbee anti-repl...
How severe is CVE-2021-27289?
CVE-2021-27289 has been rated CRITICAL with a CVSS base score of 9.1/10. This is considered a critical vulnerability requiring immediate attention.
Is there a patch for CVE-2021-27289?
Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.