Insecure Permissions in Silicon Labs Z-Wave Series 700 and 800 Devices
CVE-2024-50924

Currently unrated

Key Information:

Vendor: Silicon Labs
Status: Z-Wave Series 700 and 800
Vendor: CVE Published:; 10 December 2024

🔔 Create Silicon Labs Vulnerability Alert

What is CVE-2024-50924?

The vulnerability arises from insecure permissions in Silicon Labs' Z-Wave Series 700 and 800 devices, version 7.21.1. This flaw allows attackers to disrupt communication between the controller and the connected devices. By sending carefully crafted packets to the controller, an attacker can manipulate the data flow, potentially leading to unauthorized access or service interruption.

References

https://github.com/CNK2100/2024-CVE/blob/main/README.md

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 10, 2024