D3D Wi-Fi Home Security System ZX-G12 v2.1.1 is vulnerable to RF replay attacks on the 433 MHz sensor communication channel. The system does not implement rolling codes, message authentication, or anti-replay protection, allowing an attacker within RF range to record valid alarm/control frames and replay them to trigger false alarms.
The ZX-G12 device transmits alarm and control frames on the 433 MHz frequency without implementing rolling code mechanisms, message authentication, or replay attack protection (CWE-294 – Authentication Bypass by Capture-replay). An attacker within the radio signal range can intercept valid frames and then replay them at any time, without needing to know the key or cryptographic protocol, because the system accepts retransmitted frames as authentic.
An attacker can trigger false alarms or manipulate sensor states, leading to disruption of the security system's operation and potential bypass of physical security measures protected by this device.
Apply patches available from the manufacturer according to references. Temporarily, it is recommended to limit the physical range of the device and monitor anomalies in the alarm system's operation.
D3D Wi-Fi Home Security System ZX-G12 firmware version 2.1.1
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HD3dsecurity Zx G12
HWD3Dsecuritywszystkie wersjeD3dsecurity Zx G12 Firmware
OSD3Dsecurity2.1.17