Ti

Z-stack

4 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.8

CVE-2020-16630

Exploit
  • EPSS 0.14%
  • Published 20.09.2021 20:15:11
  • Last modified 21.11.2024 05:07:11

TI’s BLE stack caches and reuses the LTK’s property for a bonded mobile. A LTK can be an unauthenticated-and-no-MITM-protection key created by Just Works or an authenticated-and-MITM-protection key created by Passkey Entry, Numeric Comparison or OOB....

8.2

CVE-2020-27890

  • EPSS 0.47%
  • Published 27.10.2020 21:15:14
  • Last modified 21.11.2024 05:21:59

The Zigbee protocol implementation on Texas Instruments CC2538 devices with Z-Stack 3.0.1 does not properly process a ZCL Write Attributes No Response message. It crashes in zclParseInWriteCmd() and does not update the specific attribute's value.

7.5

CVE-2020-27891

  • EPSS 0.54%
  • Published 27.10.2020 21:15:14
  • Last modified 21.11.2024 05:21:59

The Zigbee protocol implementation on Texas Instruments CC2538 devices with Z-Stack 3.0.1 does not properly process a ZCL Read Reporting Configuration Response message. It crashes in zclHandleExternal().

7.5

CVE-2020-27892

  • EPSS 0.54%
  • Published 27.10.2020 21:15:14
  • Last modified 21.11.2024 05:21:59

The Zigbee protocol implementation on Texas Instruments CC2538 devices with Z-Stack 3.0.1 does not properly process a ZCL Discover Commands Received Response message or a ZCL Discover Commands Generated Response message. It crashes in zclParseInDiscC...