Buffer Overflow Vulnerability in Silicon Labs Packet Handoff Plugin
CVE-2024-10106

3.7LOW

Key Information:

Vendor: Silabs.com
Status: Ember Znet Sdk
Vendor: CVE Published:; 9 January 2025

What is CVE-2024-10106?

A buffer overflow vulnerability exists in the packet handoff plugin developed by Silicon Labs, potentially allowing attackers to manipulate memory beyond the intended buffer limits. Exploitation of this vulnerability can lead to unauthorized memory access and stability issues within affected systems. Users are advised to update their plugin versions to mitigate potential threats. For further details, refer to the official release notes and advisory from Silicon Labs.

Affected Version(s)

Ember ZNet SDK 0

References

https://github.com/SiliconLabs/simplicity_sdk/releases

release-notes

https://community.silabs.com/069Vm00000I1JawIAF

vendor-advisorypermissions-required

CVSS V3.1

Score:

3.7

Severity:

LOW

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jan 9, 2025
Vulnerability Reserved
Oct 17, 2024

Silabs.com

What is CVE-2024-10106?

Affected Version(s)

References

CVSS V3.1

Timeline