Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Silicon Labs EFR32xxx parts with classic key storage do not use hardware accelerated AES-CCM
Vulnerability Description
Ember ZNet between v7.2.0 and v7.4.0 used software AES-CCM instead of integrated hardware cryptographic accelerators, potentially increasing risk of electromagnetic and differential power analysis sidechannel attacks.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Vulnerability Type
CWE-1240
Vulnerability Title
Silicon Labs EmberZNet 安全漏洞
Vulnerability Description
Silicon Labs EmberZNet是美国芯科科技(Silicon Labs)公司的一个完整的 Zigbee 协议软件包,包含 Silicon Labs Ember 平台上稳健可靠的网状网络应用所需的所有元素。 Silicon Labs EmberZNet v7.2.0版本和v7.4.0版本存在安全漏洞,该漏洞源于不使用集成硬件加密加速器,可能会增加电磁和差分功率分析旁道攻击的风险。
CVSS Information
N/A
Vulnerability Type
N/A