Vulnerabilities > CVE-2023-6533 - Unspecified vulnerability in Silabs Z-Wave Pc-Based Controller

CVSS 6.5 - MEDIUM

Attack vector

ADJACENT_NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

low complexity

silabs

NVD

Published: 2024-02-21

Updated: 2025-02-12

Summary

Malformed Device Reset Locally Command Class packets can be sent to the controller, causing the controller to assume the end device has left the network. After this, frames sent by the end device will not be acknowledged by the controller. This vulnerability exists in PC Controller v5.54.0, and earlier.

Vulnerable Configurations

Part	Description	Count
Application	Silabs Silabs Z Wave PC Based Controller *	1

References

https://community.silabs.com/068Vm000001HdNm
https://community.silabs.com/068Vm000001HdNm