Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2023-6533

Malformed Device Reset Locally Command Class packets can be sent to the controller, causing the controller to assume the end device has left the network. After this, frames sent by the end device will not be acknowledged by the controller. This vulnerability exists in PC Controller v5.54.0, and earlier.

Published

2024-02-21T20:15:46.283

Last Modified

2025-02-12T16:57:31.787

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 6.5 (MEDIUM)

Weaknesses

Type: Secondary
CWE-248
CWE-419
Type: Primary
NVD-CWE-noinfo

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	silabs	z-wave_pc-based_controller	≤ 5.54	Yes

References

https://community.silabs.com/068Vm000001HdNm Permissions Required ([email protected])
https://community.silabs.com/068Vm000001HdNm Permissions Required (af854a3a-2127-422b-91ae-364da2661108)