mirror of
https://github.com/CVEProject/cvelist.git
synced 2025-07-29 05:56:59 +00:00
114 lines
3.7 KiB
JSON
114 lines
3.7 KiB
JSON
{
|
|
"CVE_data_meta": {
|
|
"ASSIGNER": "cert@cert.org",
|
|
"DATE_PUBLIC": "2021-12-27T05:00:00.000Z",
|
|
"ID": "CVE-2020-9059",
|
|
"STATE": "PUBLIC"
|
|
},
|
|
"affects": {
|
|
"vendor": {
|
|
"vendor_data": [
|
|
{
|
|
"product": {
|
|
"product_data": [
|
|
{
|
|
"product_name": "BE468",
|
|
"version": {
|
|
"version_data": [
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "3.42"
|
|
}
|
|
]
|
|
}
|
|
}
|
|
]
|
|
},
|
|
"vendor_name": "Schlage"
|
|
},
|
|
{
|
|
"product": {
|
|
"product_data": [
|
|
{
|
|
"product_name": "500 series",
|
|
"version": {
|
|
"version_data": [
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "all"
|
|
}
|
|
]
|
|
}
|
|
}
|
|
]
|
|
},
|
|
"vendor_name": "Silicon Labs"
|
|
}
|
|
]
|
|
}
|
|
},
|
|
"credit": [
|
|
{
|
|
"lang": "eng",
|
|
"value": "Carlos Nkuba Kayembe, Kim Seulbae, Sven Dietrich, and Heejo Lee"
|
|
}
|
|
],
|
|
"data_format": "MITRE",
|
|
"data_type": "CVE",
|
|
"data_version": "4.0",
|
|
"description": {
|
|
"description_data": [
|
|
{
|
|
"lang": "eng",
|
|
"value": "Z-Wave devices based on Silicon Labs 500 series chipsets using S0 authentication are susceptible to uncontrolled resource consumption leading to battery exhaustion. As an example, the Schlage BE468 version 3.42 door lock is vulnerable and fails open at a low battery level."
|
|
}
|
|
]
|
|
},
|
|
"generator": {
|
|
"engine": "Vulnogram 0.0.9"
|
|
},
|
|
"problemtype": {
|
|
"problemtype_data": [
|
|
{
|
|
"description": [
|
|
{
|
|
"lang": "eng",
|
|
"value": "CWE-400 Uncontrolled Resource Consumption"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
},
|
|
"references": {
|
|
"reference_data": [
|
|
{
|
|
"name": "https://kb.cert.org/vuls/id/142629",
|
|
"refsource": "CERT-VN",
|
|
"url": "https://kb.cert.org/vuls/id/142629"
|
|
},
|
|
{
|
|
"name": "https://ieeexplore.ieee.org/document/9663293",
|
|
"refsource": "MISC",
|
|
"url": "https://ieeexplore.ieee.org/document/9663293"
|
|
},
|
|
{
|
|
"name": "https://github.com/CNK2100/VFuzz-public",
|
|
"refsource": "MISC",
|
|
"url": "https://github.com/CNK2100/VFuzz-public"
|
|
},
|
|
{
|
|
"name": "https://doi.org/10.1109/ACCESS.2021.3138768",
|
|
"refsource": "MISC",
|
|
"url": "https://doi.org/10.1109/ACCESS.2021.3138768"
|
|
},
|
|
{
|
|
"refsource": "CERT-VN",
|
|
"name": "VU#142629",
|
|
"url": "https://www.kb.cert.org/vuls/id/142629"
|
|
}
|
|
]
|
|
},
|
|
"source": {
|
|
"discovery": "EXTERNAL"
|
|
}
|
|
} |