CVE-2023-5310

SiliconLabs/gecko_sdk

on github

Published

December 15, 2023

Severity

CVSS v3:

6.5 MEDIUM

CVSS v2:

N/A

Description

A denial of service vulnerability exists in all Silicon Labs Z-Wave controller and endpoint devices running Z-Wave SDK v7.20.3 (Gecko SDK v4.3.3) and earlier. This attack can be carried out only by devices on the network sending a stream of packets to the device.

References

https://github.com/SiliconLabs/gecko_sdk/releases
https://siliconlabs.lightning.force.com/sfc/servlet.shepherd/document/download/069Vm0000005E7EIAU?%20operationContext=S1

Configurations

CPE23	Version Start	Version End	Exact Version

External Links

NVD - CVE-2023-5310