1821
|
- |
|
-
|
-
|
The vulnerability described by CVE-2023-0972 has been additionally discovered in Silicon Labs Z-Wave end devices. This vulnerability may allow an unauthenticated attacker within Z-Wave range to overf…
|
-
|
CVE-2023-51395
|
2024-09-26 01:15 |
2024-03-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1822
|
- |
|
-
|
-
|
Due to an allocation of resources without limits, an uncontrolled resource consumption vulnerability exists in Silicon Labs Ember ZNet SDK prior to v7.4.0.0 (delivered as part of Silicon Labs Gecko S…
|
-
|
CVE-2023-51393
|
2024-09-26 01:15 |
2024-02-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1823
|
7.5 |
HIGH
Network
silabs
|
gecko_software_development_kit
|
Prior to v7.4.0, Ember ZNet is vulnerable to a denial of service attack through manipulation of the NWK sequence number
|
CWE-754
Improper Check for Unusual or Exceptional Conditions
|
CVE-2023-6874
|
2024-09-26 01:15 |
2024-02-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
1824
|
9.8 |
CRITICAL
Network
silabs
|
gecko_software_development_kit
|
An unvalidated input in Silicon Labs TrustZone implementation in v4.3.x and earlier of the Gecko SDK allows an attacker to access the trusted region of memory from the untrusted region.
|
NVD-CWE-noinfo
|
CVE-2023-4280
|
2024-09-26 01:15 |
2024-01-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
1825
|
9.1 |
CRITICAL
Network
silabs
|
gecko_software_development_kit
|
An unvalidated input in a library function responsible for communicating between secure and non-secure memory in Silicon Labs TrustZone implementation allows reading/writing of memory in the secure r…
|
NVD-CWE-noinfo
|
CVE-2023-4020
|
2024-09-26 01:15 |
2023-12-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
1826
|
7.8 |
HIGH
Local
|
silabs
|
gecko_bootloader
|
An integer overflow in Silicon Labs Gecko Bootloader version 4.3.1 and earlier allows unbounded memory access when reading from or writing to storage slots.
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2023-3487
|
2024-09-26 01:15 |
2023-10-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1827
|
6.5 |
MEDIUM
Adjacent
|
silabs
|
gecko_software_development_kit
|
Forcing the Bluetooth LE stack to segment 'prepare write response' packets can lead to an out-of-bounds memory access.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2023-3024
|
2024-09-26 01:15 |
2023-09-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1828
|
8.8 |
HIGH
Adjacent
|
silabs
|
unify_software_development_kit
|
Description: A vulnerability in SiLabs Unify Gateway 1.3.1 and earlier allows an unauthenticated attacker within Z-Wave range to overflow a stack buffer, leading to arbitrary code execution.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2023-3110
|
2024-09-26 01:15 |
2023-06-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1829
|
8.8 |
HIGH
Adjacent
|
silabs
|
z\/ip_gateway_sdk
|
Description: A vulnerability in SiLabs Z/IP Gateway 7.18.01 and earlier allows an unauthenticated attacker within Z-Wave range to overflow a stack buffer, leading to arbitrary code execution.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2023-0972
|
2024-09-26 01:15 |
2023-06-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1830
|
6.8 |
MEDIUM
Physics
|
silabs
|
z\/ip_gateway_sdk
|
Multiple buffer overflow vulnerabilities in SiLabs Z/IP Gateway SDK version 7.18.01 and earlier allow an attacker with invasive physical access to a Z-Wave controller device to overwrite global memor…
|
CWE-120
Classic Buffer Overflow
|
CVE-2023-0970
|
2024-09-26 01:15 |
2023-06-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|