First published: Wed Jun 21 2023(Updated: )
Description: A vulnerability in SiLabs Z/IP Gateway 7.18.01 and earlier allows an unauthenticated attacker within Z-Wave range to overflow a stack buffer, leading to arbitrary code execution.
Credit: product-security@silabs.com product-security@silabs.com
Affected Software | Affected Version | How to fix |
---|---|---|
Silabs Z\/ip Gateway Sdk | <=7.18.01 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2023-0972 is a vulnerability in SiLabs Z/IP Gateway 7.18.01 and earlier that allows an unauthenticated attacker within Z-Wave range to overflow a stack buffer, leading to arbitrary code execution.
CVE-2023-0972 is classified as critical with a severity score of 8.8.
SiLabs Z/IP Gateway 7.18.01 and earlier versions are affected by CVE-2023-0972.
An unauthenticated attacker within Z-Wave range can exploit CVE-2023-0972 by overflowing a stack buffer to execute arbitrary code.
The vendor has not provided information on a fix for CVE-2023-0972. It is recommended to contact the vendor for further assistance.