CVE-2023-51395

EUVD-2023-56116
The vulnerability described by CVE-2023-0972 has been additionally discovered in Silicon Labs Z-Wave end devices. This vulnerability may allow an unauthenticated attacker within Z-Wave range to overflow a stack buffer, leading to arbitrary code execution.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
8.8 HIGH
ADJACENT_NETWORK
LOW
NONE
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: Unknown
Early Detection
Affected products identified ahead of NVD analysis through intelligence sources.
VendorProductVersionSource
silabsz-wave_software_development_kit
𝑥
< 7.17.5
ADP
silabsz-wave_software_development_kit
7.18.0 ≤
𝑥
< 7.18.8
ADP
silabsz-wave_software_development_kit
7.19.0 ≤
𝑥
< 7.19.3
ADP
Common Weakness Enumeration
References
https://community.silabs.com/068Vm0000029Xq5
https://community.silabs.com/068Vm0000029Xq5