Vulnerabilities > Silabs > Zm5101 Firmware > Medium

DATE CVE VULNERABILITY TITLE RISK
2022-05-17 CVE-2022-24611 Unspecified vulnerability in Silabs products
Denial of Service (DoS) in the Z-Wave S0 NonceGet protocol specification in Silicon Labs Z-Wave 500 series allows local attackers to block S0/S2 protected Z-Wave network via crafted S0 NonceGet Z-Wave packages, utilizing included but absent NodeIDs.
low complexity
silabs
6.1
2022-02-04 CVE-2018-25029 Unspecified vulnerability in Silabs products
The Z-Wave specification requires that S2 security can be downgraded to S0 or other less secure protocols, allowing an attacker within radio range during pairing to downgrade and then exploit a different vulnerability (CVE-2013-20003) to intercept and spoof traffic.
low complexity
silabs
4.8