Integer Underflow Vulnerability in Silicon Labs Z-Wave Protocol Controller
CVE-2025-10933

5.3MEDIUM

Key Information:

Vendor: Silabs.com
Status: Z-wave Protocol Controller
Vendor: CVE Published:; 5 January 2026

What is CVE-2025-10933?

An integer underflow vulnerability in the Silicon Labs Z-Wave Protocol Controller allows attackers to exploit memory management issues, potentially leading to out of bounds memory reads. This flaw could enable unauthorized access to sensitive information or unexpected behavior in affected applications.

Affected Version(s)

Z-Wave Protocol Controller 0 < 1.7.1

References

https://community.silabs.com/068Vm00000a4nNI

vendor-advisorypermissions-required

CVSS V4

Score:

5.3

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jan 5, 2026
Vulnerability Reserved
Sep 24, 2025

CVE-2025-10933 Data

JSON

Silabs.com

What is CVE-2025-10933?

Affected Version(s)

References

CVSS V4

Timeline