Vulnerability Description
Insecure permissions in Silicon Labs (SiLabs) Z-Wave Series 700 and 800 v7.21.1 allow attackers to cause disrupt communications between the controller and the device itself via repeatedly sending crafted packets to the controller.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Silabs | Z-Wave Software Development Kit | <= 7.21.1 |
| Silabs | Efr32Zg14P231F256Gm32 | - |
| Silabs | Efr32Zg23A010F512Gm40 | - |
| Silabs | Efr32Zg23A010F512Gm48 | - |
| Silabs | Efr32Zg23A020F512Gm40 | - |
| Silabs | Efr32Zg23A020F512Gm48 | - |
| Silabs | Efr32Zg23B010F512Im40 | - |
| Silabs | Efr32Zg23B010F512Im48 | - |
| Silabs | Efr32Zg23B011F512Im40 | - |
| Silabs | Efr32Zg23B020F512Im40 | - |
| Silabs | Efr32Zg23B020F512Im48 | - |
| Silabs | Efr32Zg23B021F512Im40 | - |
| Silabs | Zgm130S037Hgn | - |
| Silabs | Zgm230Sa27Hgn | - |
| Silabs | Zgm230Sb27Hgn | - |
Related Weaknesses (CWE)
References
- https://github.com/CNK2100/2024-CVE/blob/main/README.mdExploitThird Party Advisory
FAQ
What is CVE-2024-50924?
CVE-2024-50924 is a vulnerability with a CVSS score of 6.5 (MEDIUM). Insecure permissions in Silicon Labs (SiLabs) Z-Wave Series 700 and 800 v7.21.1 allow attackers to cause disrupt communications between the controller and the device itself via repeatedly sending craf...
How severe is CVE-2024-50924?
CVE-2024-50924 has been rated MEDIUM with a CVSS base score of 6.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2024-50924?
Check the references section above for vendor advisories and patch information. Affected products include: Silabs Z-Wave Software Development Kit, Silabs Efr32Zg14P231F256Gm32, Silabs Efr32Zg23A010F512Gm40, Silabs Efr32Zg23A010F512Gm48, Silabs Efr32Zg23A020F512Gm40.