Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Uninitialized variable in Gecko Bootloader can leak secure stack
Vulnerability Description
Uninitialized buffer in GBL parser in Silicon Labs GSDK v4.3.0 and earlier allows attacker to leak data from Secure stack via malformed GBL file.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N
Vulnerability Type
对未经初始化资源的使用
Vulnerability Title
Silicon Labs Gecko SDK 安全漏洞
Vulnerability Description
Silicon Labs Gecko SDK(GSDK)是Silicon Labs开源的一个库。将 Silicon Labs 无线软件开发工具包(SDK)和 Gecko 平台结合为一个集成的软件包。 Silicon Labs Gecko SDK 4.3.0及之前版本存在安全漏洞,该漏洞源于存在缓冲区未初始化问题。攻击者可利用该漏洞通过格式错误的GBL文件从安全堆栈泄漏数据。
CVSS Information
N/A
Vulnerability Type
N/A