CVE-2023-5310 – Z-Wave Denial of Service caused by Stream of Packets

https://notcve.org/view.php?id=CVE-2023-5310

A denial of service vulnerability exists in all Silicon Labs Z-Wave controller and endpoint devices running Z-Wave SDK v7.20.3 (Gecko SDK v4.3.3) and earlier. This attack can be carried out only by devices on the network sending a stream of packets to the device. Existe una vulnerabilidad de denegación de servicio en todos los controladores y dispositivos de endpoint Z-Wave de Silicon Labs que ejecutan Z-Wave SDK v7.20.3 (Gecko SDK v4.3.3) y versiones anteriores. Este ataque solo puede ser llevado a cabo por dispositivos en la red que envían un flujo de paquetes al dispositivo. • https://github.com/SiliconLabs/gecko_sdk/releases https://siliconlabs.lightning.force.com/sfc/servlet.shepherd/document/download/069Vm0000005E7EIAU?%20operationContext=S1 • CWE-248: Uncaught Exception CWE-754: Improper Check for Unusual or Exceptional Conditions •