CVE-2025-65552

Published: Jan 12, 2026Modified: Jun 17, 2026

9.8

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Exploitability: 3.9 / Impact: 5.9

Source: 134c704f-9b21-4f2e-91b3-4a467353bcc0 (Secondary)

Description

D3D Wi-Fi Home Security System ZX-G12 v2.1.1 is vulnerable to RF replay attacks on the 433 MHz sensor communication channel. The system does not implement rolling codes, message authentication, or anti-replay protection, allowing an attacker within RF range to record valid alarm/control frames and replay them to trigger false alarms.

Affected (1)

Products: D3dsecurity: Zx G12 Firmware

1 product

Zx G12 Firmware

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
D3dsecurity Zx G12 Firmware	Version 2.1.17

Running on/with	Platform Versions
D3dsecurity Zx G12	All versions

Related CWEs

Authentication Bypass by Capture-replay

A capture-replay flaw exists when the design of the product makes it possible for a malicious user to sniff network traffic and bypass authentication by replaying it to the server in question to the same effect as the original message (or with minor changes).

References (4)

Source: cve@mitre.org

Not Applicable

https://github.com/EmbdCDACHyd/CVE/tree/main/CVE-2025-65552

Source: cve@mitre.org

Third Party Advisory

https://d3dsecurity.com/products/wifi-home-security-system-model-g12

Source: 134c704f-9b21-4f2e-91b3-4a467353bcc0

Product

https://github.com/EmbdCDACHyd/CVE/tree/main/CVE-2025-65552

Source: 134c704f-9b21-4f2e-91b3-4a467353bcc0

Third Party Advisory

Timeline

No history available yet.