Silabs Zip Gateway Sdk
By the Year
In 2024 there have been 0 vulnerabilities in Silabs Zip Gateway Sdk . Last year Zip Gateway Sdk had 5 security vulnerabilities published. Right now, Zip Gateway Sdk is on track to have less security vulnerabilities in 2024 than it did last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2024 | 0 | 0.00 |
| 2023 | 5 | 7.54 |
| 2022 | 0 | 0.00 |
| 2021 | 0 | 0.00 |
| 2020 | 0 | 0.00 |
| 2019 | 0 | 0.00 |
| 2018 | 0 | 0.00 |
It may take a day or so for new Zip Gateway Sdk vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Silabs Zip Gateway Sdk Security Vulnerabilities
The first S0 encryption key is generated with an uninitialized PRNG in Z/IP Gateway products running Silicon Labs Z/IP Gateway SDK v7.18.3 and earlier
CVE-2023-4489
9.8 - Critical
- December 14, 2023
The first S0 encryption key is generated with an uninitialized PRNG in Z/IP Gateway products running Silicon Labs Z/IP Gateway SDK v7.18.3 and earlier. This makes the first S0 key generated at startup predictable, potentially allowing network key prediction and unauthorized S0 network access.
Use of Uninitialized Resource
A vulnerability in SiLabs Z/IP Gateway 7.18.01 and earlier
CVE-2023-0969
3.5 - Low
- June 21, 2023
A vulnerability in SiLabs Z/IP Gateway 7.18.01 and earlier allows an authenticated attacker within Z-Wave range to manipulate an array pointer to disclose the contents of global memory.
Buffer Overflow
Description: A vulnerability in SiLabs Z/IP Gateway 7.18.01 and earlier
CVE-2023-0972
8.8 - High
- June 21, 2023
Description: A vulnerability in SiLabs Z/IP Gateway 7.18.01 and earlier allows an unauthenticated attacker within Z-Wave range to overflow a stack buffer, leading to arbitrary code execution.
Buffer Overflow
A logic error in SiLabs Z/IP Gateway SDK 7.18.02 and earlier
CVE-2023-0971
8.8 - High
- June 21, 2023
A logic error in SiLabs Z/IP Gateway SDK 7.18.02 and earlier allows authentication to be bypassed, remote administration of Z-Wave controllers, and S0/S2 encryption keys to be recovered.
AuthZ
Multiple buffer overflow vulnerabilities in SiLabs Z/IP Gateway SDK version 7.18.01 and earlier
CVE-2023-0970
6.8 - Medium
- June 21, 2023
Multiple buffer overflow vulnerabilities in SiLabs Z/IP Gateway SDK version 7.18.01 and earlier allow an attacker with invasive physical access to a Z-Wave controller device to overwrite global memory and potentially execute arbitrary code.
Classic Buffer Overflow
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Silabs Zip Gateway Sdk or by Silabs? Click the Watch button to subscribe.
