{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2024-3051", "assignerOrgId": "030b2754-1501-44a4-bef8-48be86a33bf4", "state": "PUBLISHED", "assignerShortName": "Silabs", "dateReserved": "2024-03-28T19:04:58.593Z", "datePublished": "2024-04-26T21:26:38.377Z", "dateUpdated": "2024-09-27T16:09:38.663Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "affected", "packageName": "Gecko SDK", "product": "Z/IP Gateway SDK", "repo": "https://github.com/SiliconLabs/gecko_sdk/releases", "vendor": "silabs.com", "versions": [{"lessThanOrEqual": "7.18.03", "status": "affected", "version": "0", "versionType": "semver"}]}], "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "Malformed Device Reset Locally command classes can be sent to temporarily deny service to an end device. Any frames sent by the end device will not be acknowledged by the gateway during this time. "}], "value": "Malformed Device Reset Locally command classes can be sent to temporarily deny service to an end device. Any frames sent by the end device will not be acknowledged by the gateway during this time."}], "impacts": [{"capecId": "CAPEC-601", "descriptions": [{"lang": "en", "value": "CAPEC-601 Jamming"}]}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.1"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-248", "description": "CWE-248 Uncaught Exception", "lang": "en", "type": "CWE"}]}, {"descriptions": [{"cweId": "CWE-419", "description": "CWE-419 Unprotected Primary Channel", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "030b2754-1501-44a4-bef8-48be86a33bf4", "shortName": "Silabs", "dateUpdated": "2024-09-27T16:09:38.663Z"}, "references": [{"tags": ["permissions-required"], "url": "https://community.silabs.com/068Vm0000045w2j"}], "source": {"discovery": "UNKNOWN"}, "title": "Z/IP Gateway Device Reset Locally Denial of Service Vulnerability", "x_generator": {"engine": "Vulnogram 0.1.0-dev"}}, "adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2024-3051", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2024-04-29T16:34:09.684748Z"}}}], "affected": [{"cpes": ["cpe:2.3:a:silabs:z\\/ip_gateway_sdk:-:*:*:*:*:*:*:*"], "vendor": "silabs", "product": "z\\/ip_gateway_sdk", "versions": [{"status": "affected", "version": "-"}], "defaultStatus": "unknown"}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-06-04T17:31:05.004Z"}}, {"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-01T19:32:42.626Z"}, "title": "CVE Program Container", "references": [{"tags": ["permissions-required", "x_transferred"], "url": "https://community.silabs.com/068Vm0000045w2j"}]}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CVE Program Container", "references": [{"url": "https://community.silabs.com/068Vm0000045w2j", "tags": ["permissions-required", "x_transferred"]}], "providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-01T19:32:42.626Z"}}, {"metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2024-3051", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2024-04-29T16:34:09.684748Z"}}}], "affected": [{"cpes": ["cpe:2.3:a:silabs:z\\/ip_gateway_sdk:-:*:*:*:*:*:*:*"], "vendor": "silabs", "product": "z\\/ip_gateway_sdk", "versions": [{"status": "affected", "version": "-"}], "defaultStatus": "unknown"}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-04-29T16:32:33.260Z"}, "title": "CISA ADP Vulnrichment"}], "cna": {"title": "Z/IP Gateway Device Reset Locally Denial of Service Vulnerability", "source": {"discovery": "UNKNOWN"}, "impacts": [{"capecId": "CAPEC-601", "descriptions": [{"lang": "en", "value": "CAPEC-601 Jamming"}]}], "metrics": [{"format": "CVSS", "cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.5, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "affected": [{"repo": "https://github.com/SiliconLabs/gecko_sdk/releases", "vendor": "silabs.com", "product": "Z/IP Gateway SDK", "versions": [{"status": "affected", "version": "0", "versionType": "semver", "lessThanOrEqual": "7.18.03"}], "packageName": "Gecko SDK", "defaultStatus": "affected"}], "references": [{"url": "https://community.silabs.com/068Vm0000045w2j", "tags": ["permissions-required"]}], "x_generator": {"engine": "Vulnogram 0.1.0-dev"}, "descriptions": [{"lang": "en", "value": "Malformed Device Reset Locally command classes can be sent to temporarily deny service to an end device. Any frames sent by the end device will not be acknowledged by the gateway during this time.", "supportingMedia": [{"type": "text/html", "value": "Malformed Device Reset Locally command classes can be sent to temporarily deny service to an end device. Any frames sent by the end device will not be acknowledged by the gateway during this time. ", "base64": false}]}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-248", "description": "CWE-248 Uncaught Exception"}]}, {"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-419", "description": "CWE-419 Unprotected Primary Channel"}]}], "providerMetadata": {"orgId": "030b2754-1501-44a4-bef8-48be86a33bf4", "shortName": "Silabs", "dateUpdated": "2024-09-27T16:09:38.663Z"}}}, "cveMetadata": {"cveId": "CVE-2024-3051", "state": "PUBLISHED", "dateUpdated": "2024-09-27T16:09:38.663Z", "dateReserved": "2024-03-28T19:04:58.593Z", "assignerOrgId": "030b2754-1501-44a4-bef8-48be86a33bf4", "datePublished": "2024-04-26T21:26:38.377Z", "assignerShortName": "Silabs"}, "dataVersion": "5.1"}

{"descriptions": [{"lang": "en", "value": "Malformed Device Reset Locally command classes can be sent to temporarily deny service to an end device. Any frames sent by the end device will not be acknowledged by the gateway during this time."}, {"lang": "es", "value": "Restablecimiento de dispositivo con formato incorrecto Se pueden enviar clases de comando localmente para denegar temporalmente el servicio a un dispositivo final. La puerta de enlace no reconocer\u00e1 ninguna trama enviada por el dispositivo final durante este tiempo."}], "id": "CVE-2024-3051", "lastModified": "2024-11-21T09:28:46.283", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 3.6, "source": "product-security@silabs.com", "type": "Secondary"}]}, "published": "2024-04-26T22:15:08.263", "references": [{"source": "product-security@silabs.com", "url": "https://community.silabs.com/068Vm0000045w2j"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://community.silabs.com/068Vm0000045w2j"}], "sourceIdentifier": "product-security@silabs.com", "vulnStatus": "Awaiting Analysis", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-248"}, {"lang": "en", "value": "CWE-419"}], "source": "product-security@silabs.com", "type": "Secondary"}]}

{}