Lucene search
+L

50 matches found

CNNVD
CNNVD
added 2025/03/26 12:0 a.m.6 views

Silicon Gecko OS 安全漏洞

Silicon Gecko OS is a highly optimized and feature-rich IoT operating system from Silicon. A security vulnerability exists in Silicon Gecko OS that stems from a stack buffer overflow in HTTP request processing that could lead to remote code execution...

8.8CVSS9.3AI score0.00474EPSS
Exploits0References2
NVD
NVD
added 2025/01/31 12:15 a.m.11 views

CVE-2024-24731

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Silicon Labs Gecko OS. Authentication is not required to exploit this vulnerability. The specific flaw exists within the implementation of the httpdownload command. The issue results from t...

8.8CVSS0.00462EPSS
Exploits0References2
NVD
NVD
added 2025/01/31 12:15 a.m.29 views

CVE-2024-23973

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Silicon Labs Gecko OS. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of HTTP GET requests. The issue results from the lack of...

8.8CVSS0.00522EPSS
Exploits0References2
NVD
NVD
added 2025/01/31 12:15 a.m.13 views

CVE-2024-23937

This vulnerability allows network-adjacent attackers to disclose sensitive information on affected installations of Silicon Labs Gecko OS. Authentication is not required to exploit this vulnerability. The specific flaw exists within the debug interface. The issue results from the lack of proper...

4.3CVSS0.00379EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/01/31 12:7 a.m.7 views

CVE-2024-23937 Silicon Labs Gecko OS Debug Interface Format String

This vulnerability allows network-adjacent attackers to disclose sensitive information on affected installations of Silicon Labs Gecko OS. Authentication is not required to exploit this vulnerability. The specific flaw exists within the debug interface. The issue results from the lack of proper...

4.3CVSS6.3AI score0.00379EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/01/31 12:7 a.m.19 views

CVE-2024-23937 Silicon Labs Gecko OS Debug Interface Format String

This vulnerability allows network-adjacent attackers to disclose sensitive information on affected installations of Silicon Labs Gecko OS. Authentication is not required to exploit this vulnerability. The specific flaw exists within the debug interface. The issue results from the lack of proper...

4.3CVSS0.00379EPSS
Exploits0References2
CVE
CVE
added 2025/01/31 12:7 a.m.94 views

CVE-2024-23937

CVE-2024-23937 – Silicon Labs Gecko OS : The exposed issue lies in the debug interface of Gecko OS, where a user-supplied string is used as a format specifier without proper validation. This enables network-adjacent attackers to disclose sensitive information and, in combination with other vulner...

4.3CVSS6AI score0.00379EPSS
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2025/01/31 12:0 a.m.4 views

Silicon Labs Gecko OS 安全漏洞

Silicon Labs Gecko OS is a highly optimized and feature-rich operating system for the Internet of Things from Silicon Labs, USA. A security vulnerability exists in Silicon Labs Gecko OS that stems from a missing debug interface format string validation...

4.3CVSS6.5AI score0.00379EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/01/31 12:0 a.m.6 views

Silicon Gecko OS 安全漏洞

Silicon Gecko OS is a highly optimized but feature-rich IoT operating system from Silicon, Inc. A security vulnerability exists in Silicon Gecko OS that stems from a missing HTTP GET request data length validation...

8.8CVSS6.6AI score0.00522EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/01/31 12:0 a.m.6 views

Silicon Gecko OS 安全漏洞

Silicon Gecko OS is a highly optimized but feature-rich IoT operating system from Silicon, Inc. A security vulnerability exists in Silicon Gecko OS that stems from a missing data length validation of the httpdownload command...

8.8CVSS6.5AI score0.00462EPSS
Exploits0References3
CVE
CVE
added 2025/01/30 11:28 p.m.51 views

CVE-2024-23973

CVE-2024-23973 affects Silicon Labs Gecko OS. The vulnerability stems from improper validation of the length of user-supplied data during HTTP GET handling, leading to a stack-based buffer overflow. This flaw enables network-adjacent attackers to execute arbitrary code in the device’s context wit...

8.8CVSS6.8AI score0.00522EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2025/01/30 11:28 p.m.17 views

CVE-2024-23973 Silicon Labs Gecko OS HTTP GET Request Handling Stack-based Buffer Overflow

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Silicon Labs Gecko OS. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of HTTP GET requests. The issue results from the lack of...

8.8CVSS0.00522EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/01/30 11:28 p.m.9 views

CVE-2024-23973 Silicon Labs Gecko OS HTTP GET Request Handling Stack-based Buffer Overflow

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Silicon Labs Gecko OS. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of HTTP GET requests. The issue results from the lack of...

8.8CVSS8.8AI score0.00522EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/01/30 11:25 p.m.8 views

CVE-2024-24731 Silicon Labs Gecko OS http_download Stack-based Buffer Overflow

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Silicon Labs Gecko OS. Authentication is not required to exploit this vulnerability. The specific flaw exists within the implementation of the httpdownload command. The issue results from t...

7.5CVSS7.7AI score0.00462EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/01/30 11:25 p.m.18 views

CVE-2024-24731 Silicon Labs Gecko OS http_download Stack-based Buffer Overflow

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Silicon Labs Gecko OS. Authentication is not required to exploit this vulnerability. The specific flaw exists within the implementation of the httpdownload command. The issue results from t...

7.5CVSS0.00462EPSS
Exploits0References2
CVE
CVE
added 2025/01/30 11:25 p.m.52 views

CVE-2024-24731

CVE-2024-24731 affects Silicon Labs Gecko OS. The vulnerability is a stack-based buffer overflow in the http_download command caused by insufficient validation of user-supplied data length, enabling network-adjacent attackers to execute arbitrary code with device context and no authentication. Do...

8.8CVSS6.8AI score0.00462EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2024/09/28 6:15 a.m.23 views

CVE-2024-23938

Silicon Labs Gecko OS Debug Interface Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Silicon Labs Gecko OS. Authentication is not required to exploit this vulnerability. T...

8.8CVSS0.00943EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/09/28 6:6 a.m.27 views

CVE-2024-23938 Silicon Labs Gecko OS Debug Interface Stack-based Buffer Overflow Remote Code Execution Vulnerability

Silicon Labs Gecko OS Debug Interface Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Silicon Labs Gecko OS. Authentication is not required to exploit this vulnerability. T...

8.8CVSS7.8AI score0.00943EPSS
Exploits0References2
CVE
CVE
added 2024/09/28 6:6 a.m.57 views

CVE-2024-23938

The CVE-2024-23938 entry describes a stack-based buffer overflow in the Silicon Labs Gecko OS Debug Interface that allows remote code execution by network-adjacent attackers without authentication. The root cause is improper validation of the length of user-supplied data prior to copying it into ...

8.8CVSS9.1AI score0.00943EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2024/09/28 6:6 a.m.23 views

CVE-2024-23938 Silicon Labs Gecko OS Debug Interface Stack-based Buffer Overflow Remote Code Execution Vulnerability

Silicon Labs Gecko OS Debug Interface Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Silicon Labs Gecko OS. Authentication is not required to exploit this vulnerability. T...

8.8CVSS0.00943EPSS
Exploits0References2
Rows per page
Query Builder