Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Potential Timing vulnerability in CBC PKCS7 padding calculations
Vulnerability Description
An Observable Timing Discrepancy, Covert Timing Channel vulnerability in Silabs GSDK on ARM potentially allows Padding Oracle Crypto Attack on CBC PKCS7.This issue affects GSDK: through 4.4.0.
CVSS Information
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Vulnerability Type
通过时间差异性导致的信息暴露
Vulnerability Title
Silicon Labs Gecko SDK 安全漏洞
Vulnerability Description
Silicon Labs Gecko SDK(GSDK)是Silicon Labs开源的一个库。将 Silicon Labs 无线软件开发工具包(SDK)和 Gecko 平台结合为一个集成的软件包。 Silicon Labs Gecko SDK 4.4.0及之前版本存在安全漏洞,该漏洞源于允许攻击者对CBC PKCS7进行Oracle加密攻击。
CVSS Information
N/A
Vulnerability Type
N/A