Silabs 関連製品全体の CVE とセキュリティ脆弱性情報を集約し、CVSS、EPSS、公開日、脆弱性情報データを掲載しています。
一般的な弱点パターンには バッファオーバーフロー、vendor risk memory corruption、vendor risk input validation, and パス処理の欠陥 があり、vendor surface production workloads and vendor surface software deployment の利用場面で アプリケーションクラッシュ、vendor impact unexpected behavior, and ファイル上書き などのリスクが生じる可能性があります。
掲載データは公開脆弱性情報とセキュリティ公告に基づき、過去の暴露面と修補優先度の評価に利用できます。
| CVE | 概要 | ソース | CVSS 最大値 | EPSS(%) | 公開 | 更新 |
|---|---|---|---|---|---|---|
| CVE-2026-4526 | In EmberZNet v9.0.2 and earlier, malformed global ZCL messages can trigger out-of-bounds reads in framework parsing logic and terminate the process. These messages must come from a device that has already joined the network, and no information leakage back to the sender was observed. | [email protected] | 7.1 | 0.25% | 2026-06-25 | 2026-06-25 |
| CVE-2026-47154 | In EmberZNet v9.0.2 and earlier, a malformed GetProfileResponse message can trigger out-of-bounds reads while iterating interval entries and terminate the process. These messages must come from a device that has already joined the network, and no information leakage back to the sender was observed. Only devices supporting the Simple Metering cluster may be impacted. | [email protected] | 7.1 | 0.25% | 2026-06-25 | 2026-06-25 |
| CVE-2026-47153 | In EmberZNet v9.0.2 and earlier, a malformed Level Control Step command can terminate the process through a divide-by-zero fault. This command must come from a device that has already joined the network. Only devices supporting the Level Control cluster may be impacted. | [email protected] | 7.1 | 0.25% | 2026-06-25 | 2026-06-25 |
| CVE-2026-47152 | In EmberZNet v9.0.2 and earlier, a malformed Level Control Move command can terminate the process through a divide-by-zero fault. This command must come from a device that has already joined the network. Only devices supporting the Level Control cluster may be impacted. | [email protected] | 7.1 | 0.25% | 2026-06-25 | 2026-06-25 |
| CVE-2026-47151 | In EmberZNet v9.0.2 and earlier, malformed ClearWeekdaySchedule messages can trigger out-of-bounds writes into Door Lock schedule state. The size and location of this data is limited. These messages must come from a device that has already joined the network. Only devices supporting the Door Lock cluster may be impacted. | [email protected] | 7.1 | 0.22% | 2026-06-25 | 2026-06-25 |
| CVE-2026-47150 | In EmberZNet v9.0.2 and earlier, malformed IAS Zone enrollment messages can trigger an out-of-bounds state-table write and terminate the process. The size and location of this write is limited. These messages must come from a device that has already joined the network. Only devices supporting the IAS Zone cluster may be impacted. | [email protected] | 7.1 | 0.22% | 2026-06-25 | 2026-06-25 |
| CVE-2026-47149 | In EmberZNet v9.0.2 and earlier, malformed or out-of-range Door Lock user identifiers can trigger out-of-bounds table reads and terminate the process. These messages must come from a device that has already joined the network, and no information leakage back to the sender was observed. Only devices supporting the Door Lock cluster may be impacted. | [email protected] | 7.1 | 0.25% | 2026-06-25 | 2026-06-25 |
| CVE-2026-47148 | In EmberZNet v9.0.2 and earlier, malformed GetGroupMembership commands can trigger repeated reads past the end of the message payload and terminate the process. These messages must come from a device that has already joined the network, and no information leakage back to the sender was observed. Only devices supporting the Groups cluster may be impacted. | [email protected] | 7.1 | 0.25% | 2026-06-25 | 2026-06-25 |
| CVE-2026-47147 | In EmberZNet v9.0.2 and earlier, malformed OTA requests can drive the OTA server parser into out-of-bounds reads. A limited amount of data from RAM is read back to the requester. The size and location of this data is limited. These requests must come from a device that has already joined the network. Only devices supporting the OTA Server cluster may be impacted. | [email protected] | 7.1 | 0.23% | 2026-06-25 | 2026-06-25 |
| CVE-2026-47146 | In EmberZNet v9.0.2 and earlier, malformed Color Control messages can lead to asserts that terminate the process. These messages must come from a device that has already joined the network. Only devices supporting the Color Control cluster may be impacted. | [email protected] | 7.1 | 0.25% | 2026-06-25 | 2026-06-25 |
| CVE-2026-47145 | In EmberZNet v9.0.2 and earlier, malformed Color Control messages can lead to asserts that terminate the process. These messages must come from a device that has already joined the network. Only devices supporting the Color Control cluster may be impacted. | [email protected] | 7.1 | 0.25% | 2026-06-25 | 2026-06-25 |
| CVE-2025-12131 | A truncated 802.15.4 packet can lead to an assert, resulting in a denial of service. | [email protected] | 5.3 | 0.22% | 2026-02-05 | 2026-06-17 |
| CVE-2025-2838 | Silicon Labs Gecko OS DNS Response Processing Infinite Loop Denial-of-Service Vulnerability. This vulnerability allows network-adjacent attackers to create a denial-of-service condition on affected installations of Silicon Labs Gecko OS. Authentication is not required to exploit this vulnerability. The specific flaw exists within the processing of DNS responses. The issue results from a logic error that can lead to an infinite loop. An attacker can leverage this vulnerability to create a denial | [email protected] | 6.5 | 0.21% | 2025-03-26 | 2026-06-17 |
| CVE-2025-2837 | Silicon Labs Gecko OS HTTP Request Handling Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Silicon Labs Gecko OS. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of HTTP requests. The issue results from the lack of proper validation of the length of user-supplied data prior to copying it to a stack-based buffer. | [email protected] | 8.8 | 0.46% | 2025-03-26 | 2026-06-17 |
| CVE-2024-24731 | This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Silicon Labs Gecko OS. Authentication is not required to exploit this vulnerability. The specific flaw exists within the implementation of the http_download command. The issue results from the lack of proper validation of the length of user-supplied data prior to copying it to a stack-based buffer. An attacker can leverage this vulnerability to execute code in the context of the device. | [email protected] | 7.5 | 0.46% | 2025-01-30 | 2026-06-17 |
| CVE-2024-23973 | This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Silicon Labs Gecko OS. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of HTTP GET requests. The issue results from the lack of proper validation of the length of user-supplied data prior to copying it to a stack-based buffer. An attacker can leverage this vulnerability to execute code in the context of the device. | [email protected] | 8.8 | 0.51% | 2025-01-30 | 2026-06-17 |
| CVE-2024-23937 | This vulnerability allows network-adjacent attackers to disclose sensitive information on affected installations of Silicon Labs Gecko OS. Authentication is not required to exploit this vulnerability. The specific flaw exists within the debug interface. The issue results from the lack of proper validation of a user-supplied string before using it as a format specifier. An attacker can leverage this in conjunction with other vulnerabilities to execute arbitrary code in the context of the device. | [email protected] | 4.3 | 0.37% | 2025-01-30 | 2026-06-17 |
| CVE-2024-50931 | Silicon Labs Z-Wave Series 500 v6.84.0 was discovered to contain insecure permissions. | [email protected] | 4.6 | 0.21% | 2024-12-10 | 2026-06-17 |
| CVE-2024-50930 | An issue in Silicon Labs Z-Wave Series 500 v6.84.0 allows attackers to execute arbitrary code. | [email protected] | 8.8 | 0.29% | 2024-12-10 | 2026-06-17 |
| CVE-2024-50929 | Insecure permissions in Silicon Labs (SiLabs) Z-Wave Series 700 and 800 v7.21.1 allow attackers to arbitrarily change the device type in the controller's memory, leading to a Denial of Service (DoS). | [email protected] | 6.2 | 0.22% | 2024-12-10 | 2026-06-17 |