Announcement
Collapse
No announcement yet.
Zshave vulnerability
Collapse
X
-
Here's info from HST on security in the plugin:
https://forums.homeseer.com/showthread.php?t=195699HS4Pro on a Raspberry Pi4
54 Z-Wave Nodes / 21 Zigbee Devices / 108 Events / 767 Devices
Plugins: Z-Wave / Zigbee Plus / EasyTrigger / AK Weather / OMNI
HSTouch Clients: 1 Android
-
Since the ZShave exploit causes S2 devices to revert to S0 and since I don't have any S2 devices and I doubt I will be replacing any devices soon, I see no need to be concerned about the exploit. Certainly if one had a network of S2 devices and was dependent on the security, the exploit would be of concern. It is still not clear to me that a network can be secure with even a single S0 device.
I still have to go back to the belief that- My house is not likely to be a target of a sophisticated thief that would have Z-Wave exploitation hardware
- When I used to be involved with police work, the vast majority of home break-ins are not the front door, instead using a window or sliding door on the back of the house. It was a very small percentage where the front door was breached.
- Even if they were able to hack my network and unlock a door, the security system and cameras would still be active
HS4 Pro, 4.2.19.16 Windows 10 pro, Supermicro LP Xeon
Comment
Comment