Lucene search

[email protected]NVD:CVE-2019-15912

HistoryDec 20, 2019 - 5:15 p.m.

CVE-2019-15912

2019-12-2017:15:11

CWE-20

[email protected]

web.nvd.nist.gov

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS

0.002

Percentile

52.4%

JSON

An issue was discovered on ASUS HG100, MW100, WS-101, TS-101, AS-101, MS-101, DL-101 devices using ZigBee PRO. Attackers can use the ZigBee trust center rejoin procedure to perform mutiple denial of service attacks.

Affected configurations

Nvd

Node

asushg100_firmwareMatch-

AND

asushg100Match-

Node

asusmw100_firmwareMatch-

AND

asusmw100Match-

Node

asusws-101_firmwareMatch-

AND

asusws-101Match-

Node

asusts-101_firmwareMatch-

AND

asusts-101Match-

Node

asusas-101_firmwareMatch-

AND

asusas-101Match-

Node

asusms-101_firmwareMatch-

AND

asusms-101Match-

Node

asusdl-101_firmwareMatch-

AND

asusdl-101Match-

VendorProductVersionCPE
asushg100_firmware-cpe:2.3:o:asus:hg100_firmware:-:*:*:*:*:*:*:*
asushg100-cpe:2.3:h:asus:hg100:-:*:*:*:*:*:*:*
asusmw100_firmware-cpe:2.3:o:asus:mw100_firmware:-:*:*:*:*:*:*:*
asusmw100-cpe:2.3:h:asus:mw100:-:*:*:*:*:*:*:*
asusws-101_firmware-cpe:2.3:o:asus:ws-101_firmware:-:*:*:*:*:*:*:*
asusws-101-cpe:2.3:h:asus:ws-101:-:*:*:*:*:*:*:*
asusts-101_firmware-cpe:2.3:o:asus:ts-101_firmware:-:*:*:*:*:*:*:*
asusts-101-cpe:2.3:h:asus:ts-101:-:*:*:*:*:*:*:*
asusas-101_firmware-cpe:2.3:o:asus:as-101_firmware:-:*:*:*:*:*:*:*
asusas-101-cpe:2.3:h:asus:as-101:-:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
asus	hg100_firmware	-	cpe:2.3:o:asus:hg100_firmware:-:::::::*
asus	hg100	-	cpe:2.3:h:asus:hg100:-:::::::*
asus	mw100_firmware	-	cpe:2.3:o:asus:mw100_firmware:-:::::::*
asus	mw100	-	cpe:2.3:h:asus:mw100:-:::::::*
asus	ws-101_firmware	-	cpe:2.3:o:asus:ws-101_firmware:-:::::::*
asus	ws-101	-	cpe:2.3:h:asus:ws-101:-:::::::*
asus	ts-101_firmware	-	cpe:2.3:o:asus:ts-101_firmware:-:::::::*
asus	ts-101	-	cpe:2.3:h:asus:ts-101:-:::::::*
asus	as-101_firmware	-	cpe:2.3:o:asus:as-101_firmware:-:::::::*
asus	as-101	-	cpe:2.3:h:asus:as-101:-:::::::*

Rows per page:

1-10 of 141

References

github.com/chengcheng227/CVE-POC/blob/master/CVE-2019-15912_1.md

github.com/chengcheng227/CVE-POC/blob/master/CVE-2019-15912_2.md

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS

0.002

Percentile

52.4%

JSON

Related for NVD:CVE-2019-15912

cve1 cvelist1 prion1