Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Keys Stored in Plaintext on Secure Vault High for Silabs OpenThread devices
Vulnerability Description
Missing Encryption of Security Keys vulnerability in Silicon Labs OpenThread SDK on 32 bit, ARM (SecureVault High modules) allows potential modification or extraction of network credentials stored in flash. This issue affects Silicon Labs OpenThread SDK: 2.3.1 and earlier.
CVSS Information
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
敏感数据的明文存储
Vulnerability Title
Silicon Labs OpenThread SDK 安全漏洞
Vulnerability Description
Silicon Labs OpenThread SDK是美国芯科科技(Silicon Labs)公司的一种软件开发工具包,用于支持 Thread 协议的开发和部署。 Silicon Labs OpenThread SDK存在安全漏洞,该漏洞源于存在安全密钥缺失加密漏洞,允许对闪存中存储的网络凭据进行潜在修改或提取。
CVSS Information
N/A
Vulnerability Type
N/A