lluo4

5 exploits Active since Jan 2023
CVE-2022-47100 WRITEUP HIGH WRITEUP
Sengled ES21-N1EAW Firmware 0x0000024 - Unauthenticated Factory Reset via Crafted IEEE 802.15.4 Frame
A vulnerability in Sengled Smart bulb 0x0000024 allows attackers to arbitrarily perform a factory reset on the device via a crafted IEEE 802.15.4 frame.
CVSS 7.5
CVE-2023-24678 WRITEUP HIGH WRITEUP
Centralite Pearl Thermostat 0x04075010 - Denial of Service via Crafted Zigbee Message
A vulnerability in Centralite Pearl Thermostat 0x04075010 allows attackers to cause a Denial of Service (DoS) via a crafted Zigbee message.
CVSS 7.5
CVE-2023-29779 WRITEUP HIGH WRITEUP
Sengled E1E-G7F Firmware - Denial of Service via Malicious Zigbee Messages
Sengled Dimmer Switch V0.0.9 contains a denial of service (DOS) vulnerability, which allows a remote attacker to send malicious Zigbee messages to a vulnerable device and cause crashes. After receiving the malicious command, the device will keep reporting its status and finally drain its battery after receiving the 'Set_short_poll_interval' command.
CVSS 7.5
CVE-2023-34596 WRITEUP MEDIUM WRITEUP
Aeotec WallMote Switch Firmware 2.3 - Denial of Service via Crafted Z-Wave Message
A vulnerability in Aeotec WallMote Switch firmware v2.3 allows attackers to cause a Denial of Service (DoS) via a crafted Z-Wave message.
CVSS 6.5
CVE-2023-34597 WRITEUP MEDIUM WRITEUP
Fibaro FGMS-001 Firmware 3.4 - Denial of Service via Crafted Z-Wave Message
A vulnerability in Fibaro Motion Sensor firmware v3.4 allows attackers to cause a Denial of Service (DoS) via a crafted Z-Wave message.
CVSS 6.5