Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Z/IP Gateway Use of Uninitialized PRNG when Generating S0 Encryption Key
Vulnerability Description
The first S0 encryption key is generated with an uninitialized PRNG in Z/IP Gateway products running Silicon Labs Z/IP Gateway SDK v7.18.3 and earlier. This makes the first S0 key generated at startup predictable, potentially allowing network key prediction and unauthorized S0 network access.
CVSS Information
CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
CWE-1279
Vulnerability Title
Silicon Labs Gecko SDK 安全漏洞
Vulnerability Description
Silicon Labs Gecko SDK(GSDK)是Silicon Labs开源的一个库。将 Silicon Labs 无线软件开发工具包(SDK)和 Gecko 平台结合为一个集成的软件包。 Silicon Labs Gecko SDK v7.18.3及之前版本存在安全漏洞,该漏洞源于生成的第一个S0密钥可预测,可能允许未经授权的网络访问。
CVSS Information
N/A
Vulnerability Type
N/A