Ember Znet Sdk
Approved changes feed: RSS · Atom
cpe:2.3:a:silabs.com:ember_znet_sdk:*:*:*:*:*:*:*:*
part: a version: * update: *
| Vendor | Silabs.Com (52225443-b468-5192-880f-63993491f517) |
|---|---|
| Product | Ember Znet Sdk (9a67d5fd-bb6c-516e-81d5-f10eb11055d8) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2024-3043 |
vulnerable | 2026-06-03 14:56:23.179533 |
Zigbee co-ordinator realignment packet may lead to denial of service
HIGH (7.5)
An unauthenticated IEEE 802.15.4 'co-ordinator realignment' packet can be used to force Zigbee nodes to change their network identifier (pan ID), leading to a denial of service. This packet type is not useful in production and should be used only for PHY qualification.
Published: 2024-06-27T18:17:15.392Z
Updated: 2024-08-01T19:32:42.579Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-10106 |
vulnerable | 2026-06-03 14:54:04.906712 |
Ember ZNet buffer overflow in 'packet handoff' plugin
LOW (3.7)
A buffer overflow vulnerability in the packet handoff plugin allows an attacker to overwrite memory outside the plugin's buffer.
Published: 2025-01-09T14:56:47.355Z
Updated: 2026-04-16T19:03:01.041Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-51394 |
vulnerable | 2026-06-03 14:53:32.105114 |
Potential DoS for EFR32xxx parts in high traffic environments due to null buffer dereference / crash
MEDIUM (5.3)
High traffic environments may result in NULL Pointer Dereference vulnerability in Silicon Labs's Ember ZNet SDK before v7.4.0, causing a system crash.
Published: 2024-02-23T19:13:37.199Z
Updated: 2024-08-16T19:31:32.322Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-51393 |
not_vulnerable | 2026-06-03 14:53:32.103386 |
Potential DoS due to BusFault and Assert in Ember ZNet legacy packet buffer
MEDIUM (5.3)
Due to an allocation of resources without limits, an uncontrolled resource consumption vulnerability exists in Silicon Labs Ember ZNet SDK prior to v7.4.0.0 (delivered as part of Silicon Labs Gecko SDK v4.4.0) which may enable attackers to trigger a bus fault and crash of the device, requiring a reboot in order to rejoin the network.
Published: 2024-02-23T19:14:23.817Z
Updated: 2025-04-22T16:15:09.433Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-51392 |
vulnerable | 2026-06-03 14:53:32.101781 |
Silicon Labs EFR32xxx parts with classic key storage do not use hardware accelerated AES-CCM
MEDIUM (6.2)
Ember ZNet between v7.2.0 and v7.4.0 used software AES-CCM instead of integrated hardware cryptographic accelerators, potentially increasing risk of electromagnetic and differential power analysis sidechannel attacks.
Published: 2024-02-23T16:12:41.261Z
Updated: 2025-04-22T16:15:25.335Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-41096 |
not_vulnerable | 2026-06-03 14:52:51.036892 |
Keys Stored in Plaintext on Secure Vault High for Silabs Ember ZNet devices
MEDIUM (6.8)
Missing Encryption of Security Keys vulnerability in Silicon Labs Ember ZNet SDK on 32 bit, ARM (SecureVault High modules)
allows potential modification or extraction of network credentials stored in flash.
This issue affects Silicon Labs Ember ZNet SDK: 7.3.1 and earlier.
Published: 2023-10-26T13:10:34.406Z
Updated: 2024-09-25T16:23:10.406Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.