Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Silicon Labs — Vulnerabilities & Security Advisories 31

Browse all 31 CVE security advisories affecting Silicon Labs. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Silicon Labs designs microcontrollers, wireless connectivity solutions, and analog integrated circuits primarily for industrial, automotive, and consumer IoT applications. With thirty-one recorded Common Vulnerabilities and Exposures (CVEs), the company’s historical attack surface has frequently involved remote code execution and buffer overflow flaws within its wireless stack and development tools. These vulnerabilities often stem from insufficient input validation in embedded firmware or misconfigured default credentials in debugging interfaces. While no catastrophic, widespread data breaches have been publicly attributed to the vendor, the nature of its hardware-centric products means that exploited flaws can potentially compromise physical device integrity or enable unauthorized network access. Security updates are typically distributed via firmware patches, requiring careful integration by downstream manufacturers to mitigate risks associated with legacy components and unpatched wireless protocols.

Top products by Silicon Labs: Gecko Platform Gecko OS Z/IP Gateway Simplicity SDK Z-Wave Ember ZNet Z-Wave SDK UZB-7 Unify Gateway Gecko Bootloader
CVE IDTitleCVSSSeverityPublished
CVE-2025-2838 Silicon Labs Gecko OS DNS Response Processing Infinite Loop Denial-of-Service Vulnerability — Gecko OSCWE-835 6.5AIMediumAI2025-03-26
CVE-2025-2837 Silicon Labs Gecko OS HTTP Request Handling Stack-based Buffer Overflow Remote Code Execution Vulnerability — Gecko OSCWE-121 8.8AIHighAI2025-03-26
CVE-2024-9055 DPA Countermeasures need reseeding — Simplicity SDKCWE-331 4.2 Medium2025-03-17
CVE-2024-12975 Silicon Labs CPC can leak information in full duplex SPI — Simplicity SDKCWE-126 6.5 -2025-03-07
CVE-2024-23937 Silicon Labs Gecko OS Debug Interface Format String — Gecko OSCWE-200 4.3 Medium2025-01-31
CVE-2024-23973 Silicon Labs Gecko OS HTTP GET Request Handling Stack-based Buffer Overflow — Gecko OSCWE-120 8.8 High2025-01-30
CVE-2024-24731 Silicon Labs Gecko OS http_download Stack-based Buffer Overflow — Gecko OSCWE-120 7.5 High2025-01-30
CVE-2024-23938 Silicon Labs Gecko OS Debug Interface Stack-based Buffer Overflow Remote Code Execution Vulnerability — Gecko OSCWE-121 8.8 High2024-09-28
CVE-2023-41093 Loss of confidentiality due to potential race condition in Bluetooth controller Connection_Handle reuse — Simplicity SDKCWE-416 3.1 Low2024-07-12
CVE-2024-22472 Long S0 frames received by 500 series Z-Wave devices may cause buffer overflow — Z-Wave SDKCWE-120 8.1 High2024-05-07
CVE-2023-51395 Z-Wave S0 Decryption Vulnerability in End Devices — Z-Wave SDKCWE-787 8.8 High2024-03-07
CVE-2023-39541 Weston Embedded uC-TCP-IP 安全漏洞 — Gecko PlatformCWE-126 5.9 Medium2024-02-20
CVE-2023-39540 Weston Embedded uC-TCP-IP 安全漏洞 — Gecko PlatformCWE-126 5.9 Medium2024-02-20
CVE-2023-45318 Weston Embedded uC-HTTP 安全漏洞 — Gecko PlatformCWE-122 10.0 Critical2024-02-20
CVE-2023-24585 Micrium uC-HTTP 缓冲区错误漏洞 — Gecko PlatformCWE-119 7.7 High2023-11-14
CVE-2023-28391 Weston Embedded uC-HTTP 缓冲区错误漏洞 — Gecko PlatformCWE-119 9.0 Critical2023-11-14
CVE-2023-27882 Micrium uC-HTTP 安全漏洞 — Gecko PlatformCWE-122 9.0 Critical2023-11-14
CVE-2023-25181 Micrium uC-HTTP 安全漏洞 — Gecko PlatformCWE-122 9.0 Critical2023-11-14
CVE-2023-31247 Micrium uC-HTTP 缓冲区错误漏洞 — Gecko PlatformCWE-119 9.0 Critical2023-11-14
CVE-2023-28379 Micrium uC-HTTP 缓冲区错误漏洞 — Gecko PlatformCWE-119 9.0 Critical2023-11-14
CVE-2023-41094 Touchlink authentication bypass due to packets processed after timeout or out of range in Ember ZNet — Ember ZNetCWE-940 10.0 Critical2023-10-04
CVE-2023-4041 Second Stage Gecko Bootloader GBL Parser Buffer Overrun Vulnerability — Gecko BootloaderCWE-120 9.8 Critical2023-08-23
CVE-2023-3110 Buffer overflow in S0 Decryption on Unify Gateway — Unify GatewayCWE-787 9.6 Critical2023-06-21
CVE-2023-0972 Buffer overflow in S0 Decryption on Z/IP Gatweay — Z/IP GatewayCWE-787 9.6 Critical2023-06-21
CVE-2023-0971 Command Authentication Bypass in Z/IP Gateway — Z/IP GatewayCWE-863 9.6 Critical2023-06-21
CVE-2023-0970 Serial API Buffer Overflow in Z/IP Gateway — Z/IP GatewayCWE-787 7.1 High2023-06-21
CVE-2023-0969 Global read overflow in Z/IP Gateway — Z/IP GatewayCWE-125 3.5 Low2023-06-21
CVE-2022-24937 Malformed Zigbee packet causes Assert in EmberZNet 7.0.0 or earlier — Ember ZNetCWE-119 6.5 Medium2022-11-14
CVE-2018-25029 Z-Wave 安全漏洞 — Z-WaveCWE-757 8.1 -2022-02-04
CVE-2013-20003 Z-Wave 安全特征问题漏洞 — Z-WaveCWE-327 7.5 -2022-02-04

This page lists every published CVE security advisory associated with Silicon Labs. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.