Lucene search
HistoryDec 15, 2023 - 4:15 p.m.
CVE-2023-5310
denial of service
z-wave
silicon labs
vulnerability
gecko sdk
network
packets
CVSS3
6.5
Attack Vector
ADJACENT
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS
0
Percentile
12.7%
A denial of service vulnerability exists in all Silicon Labs Z-Wave controller and endpoint devices running Z-Wave SDK v7.20.3 (Gecko SDK v4.3.3) and earlier. This attack can be carried out only by devices on the network sending a stream of packets to the device.
Affected configurations
Node
silabsz-wave_long_range_700Match-
ORsilabsz-wave_long_range_800Match-
silabsz-wave_software_development_kitRange≤7.20.2.0
| Vendor | Product | Version | CPE |
|---|---|---|---|
| silabs | z-wave_long_range_700 | - | cpe:2.3:h:silabs:z-wave_long_range_700:-:*:*:*:*:*:*:* |
| silabs | z-wave_long_range_800 | - | cpe:2.3:h:silabs:z-wave_long_range_800:-:*:*:*:*:*:*:* |
| silabs | z-wave_software_development_kit | * | cpe:2.3:a:silabs:z-wave_software_development_kit:*:*:*:*:*:*:*:* |
Related
prion
prion
Denial of service
2023-12-15 16:15:00
cve
cve
CVE-2023-5310
2023-12-15 16:15:46
cvelist
cvelist
CVE-2023-5310 Z-Wave Denial of Service caused by Stream of Packets
2023-12-15 16:05:15
CVSS3
6.5
Attack Vector
ADJACENT
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS
0
Percentile
12.7%
Related for NVD:CVE-2023-5310