Silicon Labs 厂商漏洞列表 / CVE 中文分析 31

Silicon Labs 厂商相关 31 条 CVE 漏洞，含 AI 中文分析、POC、CVSS 评分与受影响产品。

Silicon Labs 专注于物联网无线连接芯片及软件解决方案，其嵌入式固件与开发工具链已收录 31 条 CVE。历史漏洞多涉及缓冲区溢出、权限绕过及远程代码执行，常源于固件更新机制或通信协议实现缺陷。值得关注的是，其 Wi-Fi 和蓝牙栈曾曝出关键安全更新，旨在修复底层协议栈中的内存破坏风险，建议用户及时升级固件以缓解潜在攻击面。

上位製品 Silicon Labs: Gecko Platform Gecko OS Z/IP Gateway Simplicity SDK Z-Wave Ember ZNet Z-Wave SDK UZB-7 Unify Gateway Gecko Bootloader

CVEs 31

CVE ID	タイトル	CVSS	深刻度	公開日
CVE-2025-2838	Silicon Labs Gecko OS DNS Response Processing Infinite Loop Denial-of-Service Vulnerability — Gecko OSCWE-835	6.5^AI	Medium^AI	2025-03-26
CVE-2025-2837	Silicon Labs Gecko OS HTTP Request Handling Stack-based Buffer Overflow Remote Code Execution Vulnerability — Gecko OSCWE-121	8.8^AI	High^AI	2025-03-26
CVE-2024-9055	DPA Countermeasures need reseeding — Simplicity SDKCWE-331	4.2	Medium	2025-03-17
CVE-2024-12975	Silicon Labs CPC can leak information in full duplex SPI — Simplicity SDKCWE-126	6.5	-	2025-03-07
CVE-2024-23937	Silicon Labs Gecko OS Debug Interface Format String — Gecko OSCWE-200	4.3	Medium	2025-01-31
CVE-2024-23973	Silicon Labs Gecko OS HTTP GET Request Handling Stack-based Buffer Overflow — Gecko OSCWE-120	8.8	High	2025-01-30
CVE-2024-24731	Silicon Labs Gecko OS http_download Stack-based Buffer Overflow — Gecko OSCWE-120	7.5	High	2025-01-30
CVE-2024-23938	Silicon Labs Gecko OS Debug Interface Stack-based Buffer Overflow Remote Code Execution Vulnerability — Gecko OSCWE-121	8.8	High	2024-09-28
CVE-2023-41093	Loss of confidentiality due to potential race condition in Bluetooth controller Connection_Handle reuse — Simplicity SDKCWE-416	3.1	Low	2024-07-12
CVE-2024-22472	Long S0 frames received by 500 series Z-Wave devices may cause buffer overflow — Z-Wave SDKCWE-120	8.1	High	2024-05-07
CVE-2023-51395	Z-Wave S0 Decryption Vulnerability in End Devices — Z-Wave SDKCWE-787	8.8	High	2024-03-07
CVE-2023-39541	Weston Embedded uC-TCP-IP 安全漏洞 — Gecko PlatformCWE-126	5.9	Medium	2024-02-20
CVE-2023-39540	Weston Embedded uC-TCP-IP 安全漏洞 — Gecko PlatformCWE-126	5.9	Medium	2024-02-20
CVE-2023-45318	Weston Embedded uC-HTTP 安全漏洞 — Gecko PlatformCWE-122	10.0	Critical	2024-02-20
CVE-2023-24585	Micrium uC-HTTP 缓冲区错误漏洞 — Gecko PlatformCWE-119	7.7	High	2023-11-14
CVE-2023-28391	Weston Embedded uC-HTTP 缓冲区错误漏洞 — Gecko PlatformCWE-119	9.0	Critical	2023-11-14
CVE-2023-27882	Micrium uC-HTTP 安全漏洞 — Gecko PlatformCWE-122	9.0	Critical	2023-11-14
CVE-2023-25181	Micrium uC-HTTP 安全漏洞 — Gecko PlatformCWE-122	9.0	Critical	2023-11-14
CVE-2023-31247	Micrium uC-HTTP 缓冲区错误漏洞 — Gecko PlatformCWE-119	9.0	Critical	2023-11-14
CVE-2023-28379	Micrium uC-HTTP 缓冲区错误漏洞 — Gecko PlatformCWE-119	9.0	Critical	2023-11-14
CVE-2023-41094	Touchlink authentication bypass due to packets processed after timeout or out of range in Ember ZNet — Ember ZNetCWE-940	10.0	Critical	2023-10-04
CVE-2023-4041	Second Stage Gecko Bootloader GBL Parser Buffer Overrun Vulnerability — Gecko BootloaderCWE-120	9.8	Critical	2023-08-23
CVE-2023-3110	Buffer overflow in S0 Decryption on Unify Gateway — Unify GatewayCWE-787	9.6	Critical	2023-06-21
CVE-2023-0972	Buffer overflow in S0 Decryption on Z/IP Gatweay — Z/IP GatewayCWE-787	9.6	Critical	2023-06-21
CVE-2023-0971	Command Authentication Bypass in Z/IP Gateway — Z/IP GatewayCWE-863	9.6	Critical	2023-06-21
CVE-2023-0970	Serial API Buffer Overflow in Z/IP Gateway — Z/IP GatewayCWE-787	7.1	High	2023-06-21
CVE-2023-0969	Global read overflow in Z/IP Gateway — Z/IP GatewayCWE-125	3.5	Low	2023-06-21
CVE-2022-24937	Malformed Zigbee packet causes Assert in EmberZNet 7.0.0 or earlier — Ember ZNetCWE-119	6.5	Medium	2022-11-14
CVE-2018-25029	Z-Wave 安全漏洞 — Z-WaveCWE-757	8.1	-	2022-02-04
CVE-2013-20003	Z-Wave 安全特征问题漏洞 — Z-WaveCWE-327	7.5	-	2022-02-04

本页汇总了 Silicon Labs 厂商截至目前公开的全部 31 条 CVE 漏洞。每条漏洞均包含 CVSS 评分、CWE 弱点分类、受影响产品与参考链接，并附带 AI 生成的中文分析以便快速判断风险。

目標達成 すべての支援者に感謝 — 100%達成しました！

Silicon Labs 厂商漏洞列表 / CVE 中文分析 31

目標達成すべての支援者に感謝 — 100%達成しました！