56 matches found
EUVD-2024-21367
Malicious code in bioql PyPI...
EUVD-2023-36366
Malicious code in bioql PyPI...
EUVD-2023-23415
Malicious code in bioql PyPI...
EUVD-2023-34150
Malicious code in bioql PyPI...
EUVD-2024-21399
Malicious code in bioql PyPI...
EUVD-2025-8258
Malicious code in bioql PyPI...
CVE-2024-24731
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Silicon Labs Gecko OS. Authentication is not required to exploit this vulnerability. The specific flaw exists within the implementation of the httpdownload command. The issue results from t...
CVE-2024-23973
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Silicon Labs Gecko OS. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of HTTP GET requests. The issue results from the lack of...
CVE-2023-32099
Compiler removal of buffer clearing in slisesignhash in Silicon Labs Gecko Platform SDK v4.2.1 and earlier results in key material duplication to RAM...
CVE-2023-32097
Compiler removal of buffer clearing in slicryptotransparentaeaddecrypttag in Silicon Labs Gecko Platform SDK v4.2.1 and earlier results in key material duplication to RAM...
CVE-2023-1132
Compiler removal of buffer clearing in slisedriverkeyagreement in Silicon Labs Gecko Platform SDK v4.2.1 and earlier results in key material duplication to RAM...
CVE-2023-2481
Compiler removal of buffer clearing in sliseopaqueimportkey in Silicon Labs Gecko Platform SDK v4.2.1 and earlier results in key material duplication to RAM...
CVE-2025-2837
CVE-2025-2837 affects Silicon Labs Gecko OS. The issue is a stack-based buffer overflow in HTTP request handling caused by insufficient validation of the length of user-supplied data before copying it to a stack buffer. This leads to remote code execution with network-adjacent access and no authe...
CVE-2025-2837 Silicon Labs Gecko OS HTTP Request Handling Stack-based Buffer Overflow Remote Code Execution Vulnerability
Silicon Labs Gecko OS HTTP Request Handling Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Silicon Labs Gecko OS. Authentication is not required to exploit this...
CVE-2022-24936
Out-of-Bounds error in GBL parser in Silicon Labs Gecko Bootloader version 4.0.1 and earlier allows attacker to overwrite flash Sign key and OTA decryption key via malicious bootloader upgrade...
CVE-2024-24731
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Silicon Labs Gecko OS. Authentication is not required to exploit this vulnerability. The specific flaw exists within the implementation of the httpdownload command. The issue results from t...
CVE-2024-23937
CVE-2024-23937 – Silicon Labs Gecko OS : The exposed issue lies in the debug interface of Gecko OS, where a user-supplied string is used as a format specifier without proper validation. This enables network-adjacent attackers to disclose sensitive information and, in combination with other vulner...
CVE-2024-24731
CVE-2024-24731 affects Silicon Labs Gecko OS. The vulnerability is a stack-based buffer overflow in the http_download command caused by insufficient validation of user-supplied data length, enabling network-adjacent attackers to execute arbitrary code with device context and no authentication. Do...
CVE-2024-23938
Silicon Labs Gecko OS Debug Interface Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Silicon Labs Gecko OS. Authentication is not required to exploit this vulnerability. T...
CVE-2024-23938 Silicon Labs Gecko OS Debug Interface Stack-based Buffer Overflow Remote Code Execution Vulnerability
Silicon Labs Gecko OS Debug Interface Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Silicon Labs Gecko OS. Authentication is not required to exploit this vulnerability. T...