CVE-2025-65552

Critical

Published: 12 January 2026

Published

12 January 2026

Modified

03 February 2026

KEV Added

—

Patch

—

CVSS Score 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS Score 0.0013 31.7th percentile

Risk Priority 20 60% EPSS · 20% KEV · 20% CVSS

Description

D3D Wi-Fi Home Security System ZX-G12 v2.1.1 is vulnerable to RF replay attacks on the 433 MHz sensor communication channel. The system does not implement rolling codes, message authentication, or anti-replay protection, allowing an attacker within RF range to record…

valid alarm/control frames and replay them to trigger false alarms.

Mitigating Controls (NIST 800-53 r5)AI

SC-40 Wireless Link Protection good match

prevent

SC-40 mandates cryptographic protections for wireless links, directly addressing the lack of rolling codes, message authentication, and anti-replay on the 433 MHz RF channel to prevent replay attacks.

AC-18 Wireless Access good match

prevent

AC-18 enforces authorization, encryption, and protection for wireless access, mitigating unauthorized recording and replay of RF alarm/control frames.

SC-8 Transmission Confidentiality and Integrity good match

prevent

SC-8 requires integrity protection for transmissions, countering replay attacks by ensuring frames cannot be validly reused without detection.

Security SummaryAI

CVE-2025-65552 affects the D3D Wi-Fi Home Security System ZX-G12 running firmware version v2.1.1. The vulnerability involves RF replay attacks on the 433 MHz sensor communication channel, as the system lacks rolling codes, message authentication, or anti-replay protection. This allows an attacker to record valid alarm or control frames and replay them, leading to false alarms. The issue is classified under CWE-294 and carries a CVSS v3.1 base score of 9.8 (AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H), published on 2026-01-12.

An attacker within RF range of the targeted system can exploit this vulnerability without authentication or user interaction. By capturing legitimate frames transmitted over the 433 MHz channel using readily available software-defined radio tools, the attacker can replay them to manipulate the security system, such as triggering unauthorized alarms or control actions.

Further details, including potential proof-of-concept code, are available in the listed references: the vendor site at http://d3d.com and product page at https://d3dsecurity.com/products/wifi-home-security-system-model-g12, as well as the GitHub repository at https://github.com/EmbdCDACHyd/CVE/tree/main/CVE-2025-65552. No specific mitigation or patch information is detailed in the provided CVE data.

Details

CWE(s): CWE-294

Affected Products

d3dsecurity

zx-g12 firmware

2.1.17

MITRE ATT&CK Enterprise TechniquesAI

T1190 Exploit Public-Facing Application Initial Access

Adversaries may attempt to exploit a weakness in an Internet-facing host or system to initially access a network.

attack.mitre.org →

T1210 Exploitation of Remote Services Lateral Movement

Adversaries may exploit remote services to gain unauthorized access to internal systems once inside of a network.

attack.mitre.org →

Why these techniques?

The vulnerability enables unauthenticated remote RF replay attacks on the exposed 433 MHz sensor channel, directly facilitating exploitation of a public-facing interface (T1190) and remote service (T1210) to manipulate the system.

Confidence: HIGH · MITRE ATT&CK Enterprise v19.0

References

http://d3d.com
Not Applicable · cve@mitre.org
https://github.com/EmbdCDACHyd/CVE/tree/main/CVE-2025-65552
Third Party Advisory · cve@mitre.org
https://d3dsecurity.com/products/wifi-home-security-system-model-g12
Product · 134c704f-9b21-4f2e-91b3-4a467353bcc0
https://github.com/EmbdCDACHyd/CVE/tree/main/CVE-2025-65552
Third Party Advisory · 134c704f-9b21-4f2e-91b3-4a467353bcc0