Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2023-0972

Description: A vulnerability in SiLabs Z/IP Gateway 7.18.01 and earlier allows an unauthenticated attacker within Z-Wave range to overflow a stack buffer, leading to arbitrary code execution.

Published

2023-06-21T20:15:10.023

Last Modified

2024-11-21T07:38:12.767

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 9.6 (CRITICAL)

Weaknesses

Type: Secondary
CWE-125
CWE-787
Type: Primary
CWE-119

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	silabs	z\/ip_gateway_sdk	≤ 7.18.01	Yes

References

https://siliconlabs.lightning.force.com/sfc/servlet.shepherd/document/download/0698Y00000V6HZzQAN?operationContext=S1 Permissions Required ([email protected])
https://siliconlabs.lightning.force.com/sfc/servlet.shepherd/document/download/0698Y00000V6HZzQAN?operationContext=S1 Permissions Required (af854a3a-2127-422b-91ae-364da2661108)