Insecure permissions in Silicon Labs (SiLabs) Z-Wave Series 700 and 800 v7.21.1 allow attackers to change the wakeup interval of end devices in controller memory, disrupting the device's communications with the controller.
CVSS Vector
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HSilabs Efr32zg14p231f256gm32
HWSilabswszystkie wersjeSilabs Efr32zg23a010f512gm40
HWSilabswszystkie wersjeSilabs Efr32zg23a010f512gm48
HWSilabswszystkie wersjeSilabs Efr32zg23a020f512gm40
HWSilabswszystkie wersjeSilabs Efr32zg23a020f512gm48
HWSilabswszystkie wersjeSilabs Efr32zg23b010f512im40
HWSilabswszystkie wersjeSilabs Efr32zg23b010f512im48
HWSilabswszystkie wersjeSilabs Efr32zg23b011f512im40
HWSilabswszystkie wersjeSilabs Efr32zg23b020f512im40
HWSilabswszystkie wersjeSilabs Efr32zg23b020f512im48
HWSilabswszystkie wersjeSilabs Efr32zg23b021f512im40
HWSilabswszystkie wersjeSilabs Zgm130s037hgn
HWSilabswszystkie wersjeSilabs Zgm230sa27hgn
HWSilabswszystkie wersjeSilabs Zgm230sb27hgn
HWSilabswszystkie wersjeSilabs Z Wave Software Development Kit
APPSilabs≤ 7.21.1
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
Related vulnerabilities
CVE-2024-50920HIGH8.8ten sam produkt
Insecure permissions in Silicon Labs (SiLabs) Z-Wave Series 700 and 800 v7.21.1 allow attackers to create a fa...
CVE-2024-50930HIGH8.8ten sam produkt
An issue in Silicon Labs Z-Wave Series 500 v6.84.0 allows attackers to execute arbitrary code.
CVE-2018-25029HIGH8.1ten sam produkt
The Z-Wave specification requires that S2 security can be downgraded to S0 or other less secure protocols, all...
CVE-2013-20003HIGH8.3ten sam produkt
Z-Wave devices from Sierra Designs (circa 2013) and Silicon Labs (using S0 security) may use a known, shared n...
CVE-2024-50931MEDIUM4.6ten sam produkt
Silicon Labs Z-Wave Series 500 v6.84.0 was discovered to contain insecure permissions.