Malformed Zigbee packet causes Assert in EmberZNet 7.0.1 or earlier

Vulnerability

A malformed packet causes a stack overflow in the Ember ZNet stack within Silicon Labs Gecko SDK (GSDK). The vulnerability affects the ZNet stack, which is part of the GSDK, and is triggered when processing a specially crafted packet. The stack overflow leads to an assert, immediately resetting the device. Affected versions include those prior to a fix in the GSDK [1].

Exploitation

An attacker would need to send a malformed packet to a device using the affected Ember ZNet stack. The packet must be crafted to exploit the stack overflow. No authentication is mentioned as required; the attack can be remote if the device is reachable on the network.

Impact

Successful exploitation causes a denial of service (DoS) as the device resets immediately due to the assert. This clears any error state but disrupts device operation. No code execution or data compromise is indicated.

Mitigation

The vulnerability is fixed in a later version of the Gecko SDK [1]. Users should update to the latest GSDK release. The reference indicates the SDK is available on GitHub. No workaround is described. The vulnerability is not listed as exploited in the wild (KEV) as per available references.