xma9

5 exploits Active since Jan 2023
CVE-2022-47100 WRITEUP HIGH WRITEUP
Sengled Smart bulb - RCE
A vulnerability in Sengled Smart bulb 0x0000024 allows attackers to arbitrarily perform a factory reset on the device via a crafted IEEE 802.15.4 frame.
CVSS 7.5
CVE-2023-24678 WRITEUP HIGH WRITEUP
Centralite Pearl Thermostat - DoS
A vulnerability in Centralite Pearl Thermostat 0x04075010 allows attackers to cause a Denial of Service (DoS) via a crafted Zigbee message.
CVSS 7.5
CVE-2023-29779 WRITEUP HIGH WRITEUP
Sengled E1e-g7f Firmware - Resource Allocation Without Limits
Sengled Dimmer Switch V0.0.9 contains a denial of service (DOS) vulnerability, which allows a remote attacker to send malicious Zigbee messages to a vulnerable device and cause crashes. After receiving the malicious command, the device will keep reporting its status and finally drain its battery after receiving the 'Set_short_poll_interval' command.
CVSS 7.5
CVE-2023-34596 WRITEUP MEDIUM WRITEUP
Aeotech Zw130-a Firmware - Denial of Service
A vulnerability in Aeotec WallMote Switch firmware v2.3 allows attackers to cause a Denial of Service (DoS) via a crafted Z-Wave message.
CVSS 6.5
CVE-2023-34597 WRITEUP MEDIUM WRITEUP
Fibaro Fgms-001 Firmware - Denial of Service
A vulnerability in Fibaro Motion Sensor firmware v3.4 allows attackers to cause a Denial of Service (DoS) via a crafted Z-Wave message.
CVSS 6.5