Lucene search
SilabsCVELIST:CVE-2023-6640HistoryFeb 21, 2024 - 7:56 p.m.
CVE-2023-6640 Silicon Labs PC Controller v5.54.0 and Earlier Denial of Service Vulnerability
2024-02-2119:56:50
CWE-754
Silabs
www.cve.org
cve-2023-6640
silicon labs
pc controller
denial of service
vulnerability
malformed s2 nonce
get command class
6.5 Medium
CVSS3
Attack Vector
ADJACENT
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
0.0004 Low
EPSS
Percentile
9.0%
Malformed S2 Nonce Get Command Class packets can be sent to crash PC Controller v5.54.0 and earlier.
CNA Affected
[
{
"defaultStatus": "unaffected",
"packageName": "PC Controller",
"product": "PC Controller",
"repo": "https://github.com/SiliconLabs/gecko_sdk/releases",
"vendor": "silabs.com",
"versions": [
{
"lessThanOrEqual": "5.54.0",
"status": "affected",
"version": "0",
"versionType": "LessThan"
}
]
}
]References
Related
cve
cve
CVE-2023-6640
2024-02-21 20:15:46
prion
prion
Command injection
2024-02-21 20:15:00
nvd
nvd
CVE-2023-6640
2024-02-21 20:15:46
6.5 Medium
CVSS3
Attack Vector
ADJACENT
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
0.0004 Low
EPSS
Percentile
9.0%
Related for CVELIST:CVE-2023-6640