CVE-2023-0970

CVSS v3.1

7.1

High

Vector

AV:P/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions SiLabs Z/IP Gateway SDK versions 7.18.01 and earlier

Description Multiple buffer overflow vulnerabilities allow an attacker with invasive physical access to a Z-Wave controller device to overwrite global memory and potentially execute arbitrary code.

Recommendations For SiLabs Z/IP Gateway SDK versions 7.18.01 and earlier, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

Memory Corruption

Out of bounds Read

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-787CWE-125CWE-120

Related Identifiers

CVE-2023-0970

Affected Products

Silabs Z/Ip Gateway

CVE-2023-0970

Weakness Enumeration

Related Identifiers

Affected Products

References · 5