CVE-2013-20003

CVE-2013-20003

Vendor Silicon Labs
Product Z-Wave
Weakness CWE-327 · Broken crypto
Published February 4, 2022
Last update September 16, 2024

CVSS base score

What the vulnerability does

01Description

Z-Wave devices from Sierra Designs (circa 2013) and Silicon Labs (using S0 security) may use a known, shared network key of all zeros, allowing an attacker within radio range to spoof Z-Wave traffic.

Key dates

02Disclosure timeline

February 4, 2022 CVE published
September 16, 2024 Record updated