QwikSec

Security Database

CVE

CWE

Training

CVE-2020-9059

Published: Jan 7, 2022

Modified: Sep 16, 2024

PUBLISHED

Description

Z-Wave devices based on Silicon Labs 500 series chipsets using S0 authentication are susceptible to uncontrolled resource consumption leading to battery exhaustion. As an example, the Schlage BE468 version 3.42 door lock is vulnerable and fails open at a low battery level.

Vendor	Product	Versions
Schlage	BE468	affected `3.42`
Silicon Labs	500 series	affected `all`

Weaknesses (CWE)

References

https://kb.cert.org/vuls/id/142629

third-party-advisory

x_refsource_CERT-VN

https://ieeexplore.ieee.org/document/9663293

x_refsource_MISC

https://github.com/CNK2100/VFuzz-public

x_refsource_MISC

https://doi.org/10.1109/ACCESS.2021.3138768

x_refsource_MISC

third-party-advisory

x_refsource_CERT-VN

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.