How severe is CVE-2021-27289?

This vulnerability has a severity rating of CRITICAL with a CVSS score of 9.1 out of 10.

What type of vulnerability is CVE-2021-27289?

This is classified as CWE-294, which is a common weakness in software security.

CVE-2021-27289 - CRITICAL Severity | CVSS 9.1

Vulnerability Description

A replay attack vulnerability was discovered in a Zigbee smart home kit manufactured by Ksix (Zigbee Gateway Module = v1.0.3, Door Sensor = v1.0.7, Motion Sensor = v1.0.12), where the Zigbee anti-replay mechanism - based on the frame counter field - is improperly implemented. As a result, an attacker within wireless range can resend captured packets with a higher sequence number, which the devices incorrectly accept as legitimate messages. This allows spoofed commands to be injected without authentication, triggering false alerts and misleading the user through notifications in the mobile application used to monitor the network.

Related Vulnerabilities

CVE-2018-17903

CRITICAL

CVSS:9.1(Critical)

SAGA1-L8B with any firmware versions prior to A0.10 are vulnerable to a replay attack and command forgery.

CWE-2942018

CVE-2019-9659

CRITICAL

CVSS:9.1(Critical)

The Chuango 433 MHz burglar-alarm product line uses static codes in the RF remote control, allowing an attacker to arm, disarm, or trigger the alarm remotely via replay attacks, as demonstrated by Chu...

CWE-2942019

CVE-2020-6972

CRITICAL

CVSS:9.1(Critical)

In Notifier Web Server (NWS) Version 3.50 and earlier, the Honeywell Fire Web Server’s authentication may be bypassed by a capture-replay attack from a web browser.

CWE-2942020

CVE-2021-41030

CRITICAL

CVSS:9.1(Critical)

An authentication bypass by capture-replay vulnerability [CWE-294] in FortiClient EMS versions 7.0.1 and below and 6.4.4 and below may allow an unauthenticated attacker to impersonate an existing user...

CWE-2942021

CVE-2023-2846

CRITICAL

CVSS:9.1(Critical)

Authentication Bypass by Capture-replay vulnerability in Mitsubishi Electric Corporation MELSEC iQ-F Series main modules allows a remote unauthenticated attacker to cancel the password/keyword setting...

CWE-2942023

CVE-2023-29158

CRITICAL

CVSS:9.1(Critical)

SUBNET PowerSYSTEM Center versions 2020 U10 and prior are vulnerable to replay attacks which may result in a denial-of-service condition or a loss of data integrity.

CWE-2942023