Support Us — Your donation helps us keep running

Goal: 1000 CNY,Raised: 1000 CNY

100.0%
Donate Now

GSDK — Vulnerabilities & Security Advisories 12

All 12 CVE vulnerabilities found in GSDK, with AI-generated Chinese analysis, references, and POCs.

Vendor: silabs.com

CVE IDTitleCVSSSeverityPaused
CVE-2024-22473 Uninitialized TRNG used for ECDSA after EM2/EM3 sleep for VSE devices CWE-1279 6.8 Medium2024-02-21
CVE-2024-0240 Silicon Labs EFR32 Bluetooth stack denial of service when sending notifications to multiple clients CWE-401 6.5 Medium2024-02-15
CVE-2023-6874 Zigbee Unauthenticated DoS via NWK Sequence number manipulation CWE-312 7.5 High2024-02-05
CVE-2023-6387 Incorrect buffer parsing in Bluetooth LE sample code may lead to buffer overflow CWE-787 7.5 High2024-02-02
CVE-2023-5138 Glitch detection not active by default in Silicon Labs Secure Vault High devices CWE-1319 6.8 Medium2024-01-03
CVE-2023-4280 Unvalidated input in Silicon Labs TrustZone implementation leads to accessing Trusted memory region CWE-125 9.3 Critical2024-01-02
CVE-2023-41097 Potential Timing vulnerability in CBC PKCS7 padding calculations CWE-208 4.6 Medium2023-12-21
CVE-2023-4020 Unvalidated input in Silicon Labs PSA Attestation service leads to secure memory access from non-secure memory CWE-125 9.0 Critical2023-12-15
CVE-2023-3487 Integer overflow in Silicon Labs Gecko Bootloader leads to unbounded memory access CWE-125 7.7 High2023-10-20
CVE-2023-3024 Bluetooth LE segmented 'prepare write response' packet may lead to out-of-bounds memory access CWE-787 5.9 Medium2023-09-29
CVE-2023-2747 Uninitialized IV in Silicon Labs SE FW v2.0.0 through v 2.2.1 for internally stored data CWE-1204 3.1 Low2023-06-15
CVE-2023-0775 Bluetooth LE Invalid prepare write request command leads to denial of service CWE-20 6.5 Medium2023-03-28

All 12 known CVE vulnerabilities affecting GSDK with full Chinese analysis, references, and POCs where available.