Vulnerabilities > Silabs > Low
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-07-12 | CVE-2023-41093 | Use After Free vulnerability in Silabs Bluetooth LOW Energy Software Development KIT Use After Free vulnerability in Silicon Labs Bluetooth SDK on 32 bit, ARM may allow an attacker with precise timing capabilities to intercept a small number of packets intended for a recipient that has left the network.This issue affects Silabs Bluetooth SDK: through 8.0.0. | 3.1 |
| 2023-06-21 | CVE-2023-0969 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Silabs Z/Ip Gateway SDK 7.18.01 A vulnerability in SiLabs Z/IP Gateway 7.18.01 and earlier allows an authenticated attacker within Z-Wave range to manipulate an array pointer to disclose the contents of global memory. | 3.5 |
| 2023-06-02 | CVE-2023-2687 | Incorrect Calculation of Buffer Size vulnerability in Silabs Gecko Software Development KIT Buffer overflow in Platform CLI component in Silicon Labs Gecko SDK v4.2.1 and earlier allows user to overwrite limited structures on the heap. | 3.3 |
| 2022-01-10 | CVE-2020-9061 | Z-Wave devices using Silicon Labs 500 and 700 series chipsets, including but not likely limited to the SiLabs UZB-7 version 7.00, ZooZ ZST10 version 6.04, Aeon Labs ZW090-A version 3.95, and Samsung STH-ETH-200 version 6.04, are susceptible to denial of service via malformed routing messages. | 3.3 |
| 2022-01-10 | CVE-2020-10137 | Insufficient Verification of Data Authenticity vulnerability in Silabs 700 Series Firmware and Uzb-7 Z-Wave devices based on Silicon Labs 700 series chipsets using S2 do not adequately authenticate or encrypt FIND_NODE_IN_RANGE frames, allowing a remote, unauthenticated attacker to inject a FIND_NODE_IN_RANGE frame with an invalid random payload, denying service by blocking the processing of upcoming events. | 3.3 |
| 2021-09-07 | CVE-2021-31609 | Unspecified vulnerability in Silabs Iwrap 5.8/6.3.0 The Bluetooth Classic implementation in Silicon Labs iWRAP 6.3.0 and earlier does not properly handle the reception of an oversized LMP packet greater than 17 bytes, allowing attackers in radio range to trigger a crash in WT32i via a crafted LMP packet. low complexity silabs | 3.3 |
| 2020-08-20 | CVE-2020-15532 | Classic Buffer Overflow vulnerability in Silabs Bluetooth LOW Energy Software Development KIT 2.13.0.0/2.13.1.0/2.13.2.0 Silicon Labs Bluetooth Low Energy SDK before 2.13.3 has a buffer overflow via packet data. | 3.3 |