CVE-2024-7322

A ZigBee coordinator, router, or end device may change their node ID when an unsolicited encrypted rejoin response is received, this change in node ID causes Denial of Service (DoS). To recover from this DoS, the network must be re-established

CVSS v3 5.8 MEDIUM

5.8^/10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 1.3 / Impact : 4.0

Attack Vector NETWORK

Attack Complexity HIGH

Privileges Required HIGH

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope CHANGED

References

Link	Resource
https://community.silabs.com/068Vm00000I7ri2

Configurations

No configuration.

History

20 Apr 2026, 16:16

Type	Values Removed	Values Added
CWE		CWE-940

16 Sep 2025, 17:15

Type	Values Removed	Values Added
CWE	~~CWE-346~~
Summary		(es) Un coordinador, enrutador o dispositivo final de ZigBee puede cambiar su ID de nodo cuando recibe una respuesta de reincorporación cifrada no solicitada. Este cambio en la ID del nodo provoca una denegación de servicio (DoS). Para recuperarse de esta denegación de servicio, se debe restablecer la red.

15 Jan 2025, 08:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2025-01-15 08:15

Updated : 2026-04-20 16:16

NVD link : CVE-2024-7322

Mitre link : CVE-2024-7322

CVE.ORG link : CVE-2024-7322

JSON object : View

Products Affected

No product.

CWE

CWE-940

Improper Verification of Source of a Communication Channel

5.8 /10