CVE-2023-51391 Micrium OS Network uC-HTTP server header parsing invalid pointer dereference vulnerability

🗓️ 16 Apr 2024 19:19:26Reported by SilabsType

Micrium OS Network HTTP server vulnerabilit

Reporter	Title	Published	Views	Family All 9
CNNVD	Micrium OS Network HTTP Server 安全漏洞	16 Apr 202400:00	–	cnnvd
CVE	CVE-2023-51391	16 Apr 202419:19	–	cve
EUVD	EUVD-2023-56112	3 Oct 202520:07	–	euvd
NVD	CVE-2023-51391	16 Apr 202420:15	–	nvd
Positive Technologies	PT-2024-3098 · Micrium · Micrium Os Network Http Server	16 Apr 202400:00	–	ptsecurity
RedhatCVE	CVE-2023-51391	23 May 202504:30	–	redhatcve
Talos	Silicon Labs Gecko Platform HTTP server header parsing invalid pointer dereference vulnerability	18 Apr 202400:00	–	talos
Talos Blog	Vulnerabilities in employee management system could lead to remote code execution, login credential theft	1 May 202416:00	–	talosblog
Vulnrichment	CVE-2023-51391 Micrium OS Network uC-HTTP server header parsing invalid pointer dereference vulnerability	16 Apr 202419:19	–	vulnrichment

[
  {
    "collectionURL": "https://github.com/SiliconLabs/gecko_sdk/releases",
    "defaultStatus": "unaffected",
    "modules": [
      "Micrium OS Network HTTP Server"
    ],
    "packageName": "Gecko SDK",
    "platforms": [
      "ARM"
    ],
    "repo": "https://github.com/SiliconLabs/gecko_sdk",
    "vendor": "silabs.com",
    "versions": [
      {
        "lessThan": "4.4.2",
        "status": "affected",
        "version": "0",
        "versionType": "semver"
      }
    ]
  }
]

Source	Link
talosintelligence	www.talosintelligence.com/vulnerability_reports/TALOS-2024-1945
community	www.community.silabs.com/068Vm000004688g

18 Apr 2024 09:05Current

7.7High risk

Vulners AI Score7.7

CVSS 3.17.5

EPSS0.00241

cve-2023-51391 micrium os network http server invalid pointer dereference device crash denial of service