Lucene search
SilabsCVELIST:CVE-2022-24938HistoryNov 14, 2022 - 5:37 p.m.
CVE-2022-24938 Malformed Zigbee packet causes Assert in EmberZNet 7.0.1 or earlier
2022-11-1417:37:05
CWE-119
Silabs
www.cve.org
zigbee
stack overflow
emberznet
6.5 Medium
CVSS3
Attack Vector
ADJACENT
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
0.001 Low
EPSS
Percentile
30.9%
A malformed packet causes a stack overflow in the Ember ZNet stack. This causes an assert which leads to a reset, immediately clearing the error.
CNA Affected
[
{
"defaultStatus": "unaffected",
"product": "Ember ZNet",
"vendor": "silabs.com",
"versions": [
{
"changes": [
{
"at": "patch",
"status": "unaffected"
}
],
"lessThanOrEqual": "7.0.1",
"status": "affected",
"version": "1.0.0",
"versionType": "patch"
}
]
}
]Related
nvd
nvd
CVE-2022-24938
2022-11-14 18:15:16
cve
cve
CVE-2022-24938
2022-11-14 18:15:16
prion
prion
Stack overflow
2022-11-14 18:15:00
6.5 Medium
CVSS3
Attack Vector
ADJACENT
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
0.001 Low
EPSS
Percentile
30.9%
Related for CVELIST:CVE-2022-24938