CVE-2024-7322

MEDIUM 5.8

Dos in ZigBee device due to unsolicited encrypted rejoin response

CVSS Score

5.8

EPSS Score

0.1%

EPSS Percentile

35th

A ZigBee coordinator, router, or end device may change their node ID when an unsolicited encrypted rejoin response is received, this change in node ID causes Denial of Service (DoS). To recover from this DoS, the network must be re-established

CWE	CWE-940
Vendor	silabs.com
Product	emberznet
Published	Jan 15, 2025
Last Updated	Apr 20, 2026

Stay Ahead of the Next One

Get instant alerts for silabs.com emberznet

Be the first to know when new medium vulnerabilities affecting silabs.com emberznet are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:N/I:N/A:H

Attack Vector

Network

Attack Complexity

High

Privileges Required

High

User Interaction

None

Scope

Changed

Confidentiality

None

Integrity

None

Availability

High

Affected Versions

silabs.com / EmberZNet

0 < 7.3.3 7.4.0 < 7.4.4

silabs.com / EmberZNet

0 < 8.1.0

References

NVD ↗ CVE.org ↗ EPSS Data ↗

community.silabs.com: https://community.silabs.com/068Vm00000I7ri2