This page lists publicly disclosed CVE vulnerabilities affecting silabs z-wave_software_development_kit (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2024-50931 | Silicon Labs Z-Wave Series 500 v6.84.0 was discovered to contain insecure permissions. | [email protected] | 4.6 | 0.05% | 2024-12-10 | 2025-07-01 |
| CVE-2024-50930 | An issue in Silicon Labs Z-Wave Series 500 v6.84.0 allows attackers to execute arbitrary code. | [email protected] | 8.8 | 0.16% | 2024-12-10 | 2025-07-01 |
| CVE-2024-50929 | Insecure permissions in Silicon Labs (SiLabs) Z-Wave Series 700 and 800 v7.21.1 allow attackers to arbitrarily change the device type in the controller's memory, leading to a Denial of Service (DoS). | [email protected] | 6.2 | 0.08% | 2024-12-10 | 2025-07-01 |
| CVE-2024-50928 | Insecure permissions in Silicon Labs (SiLabs) Z-Wave Series 700 and 800 v7.21.1 allow attackers to change the wakeup interval of end devices in controller memory, disrupting the device's communications with the controller. | [email protected] | 6.5 | 0.05% | 2024-12-10 | 2025-07-01 |
| CVE-2024-50924 | Insecure permissions in Silicon Labs (SiLabs) Z-Wave Series 700 and 800 v7.21.1 allow attackers to cause disrupt communications between the controller and the device itself via repeatedly sending crafted packets to the controller. | [email protected] | 6.5 | 0.05% | 2024-12-10 | 2025-07-01 |
| CVE-2024-50921 | Insecure permissions in Silicon Labs (SiLabs) Z-Wave Series 700 and 800 v7.21.1 allow attackers to cause a Denial of Service (DoS) via repeatedly sending crafted packets to the controller. | [email protected] | 6.5 | 0.05% | 2024-12-10 | 2025-07-01 |
| CVE-2024-50920 | Insecure permissions in Silicon Labs (SiLabs) Z-Wave Series 700 and 800 v7.21.1 allow attackers to create a fake node via supplying crafted packets. | [email protected] | 8.8 | 0.07% | 2024-12-10 | 2025-07-01 |
| CVE-2023-5310 | A denial of service vulnerability exists in all Silicon Labs Z-Wave controller and endpoint devices running Z-Wave SDK v7.20.3 (Gecko SDK v4.3.3) and earlier. This attack can be carried out only by devices on the network sending a stream of packets to the device. | [email protected] | 5.7 | 0.05% | 2023-12-15 | 2024-11-21 |