Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2024-50929

Insecure permissions in Silicon Labs (SiLabs) Z-Wave Series 700 and 800 v7.21.1 allow attackers to arbitrarily change the device type in the controller's memory, leading to a Denial of Service (DoS).

Published

2024-12-10T19:15:30.643

Last Modified

2025-07-01T15:32:36.967

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 6.2 (MEDIUM)

Weaknesses

Type: Secondary
CWE-281

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	silabs	z-wave_software_development_kit	≤ 7.21.1	Yes
Hardware	silabs	efr32zg14p231f256gm32	-	No
Hardware	silabs	efr32zg23a010f512gm40	-	No
Hardware	silabs	efr32zg23a010f512gm48	-	No
Hardware	silabs	efr32zg23a020f512gm40	-	No
Hardware	silabs	efr32zg23a020f512gm48	-	No
Hardware	silabs	efr32zg23b010f512im40	-	No
Hardware	silabs	efr32zg23b010f512im48	-	No
Hardware	silabs	efr32zg23b011f512im40	-	No
Hardware	silabs	efr32zg23b020f512im40	-	No
Hardware	silabs	efr32zg23b020f512im48	-	No
Hardware	silabs	efr32zg23b021f512im40	-	No
Hardware	silabs	zgm130s037hgn	-	No
Hardware	silabs	zgm230sa27hgn	-	No
Hardware	silabs	zgm230sb27hgn	-	No

References

https://github.com/CNK2100/2024-CVE/blob/main/README.md Exploit, Third Party Advisory ([email protected])