Lucene search
+L

4 matches found

vulnrichment
vulnrichment
added 2024/02/21 6:13 p.m.19 views

CVE-2024-22473 Uninitialized TRNG used for ECDSA after EM2/EM3 sleep for VSE devices

TRNG is used before initialization by ECDSA signing driver when exiting EM2/EM3 on Virtual Secure Vault VSE devices. This defect may allow Signature Spoofing by Key Recreation.This issue affects Gecko SDK through v4.4.0...

6.8CVSS6.6AI score0.00396EPSS
Exploits0References1
cvelist
cvelist
added 2024/02/21 6:13 p.m.33 views

CVE-2024-22473 Uninitialized TRNG used for ECDSA after EM2/EM3 sleep for VSE devices

TRNG is used before initialization by ECDSA signing driver when exiting EM2/EM3 on Virtual Secure Vault VSE devices. This defect may allow Signature Spoofing by Key Recreation.This issue affects Gecko SDK through v4.4.0...

6.8CVSS6.8AI score0.00396EPSS
Exploits0References1
cve
cve
added 2024/02/21 6:13 p.m.60 views

CVE-2024-22473

Gecko SDK vulnerability CVE-2024-22473 involves TRNG used before initialization by the ECDSA signing driver when exiting EM2/EM3 on Virtual Secure Vault (VSE) devices. Affected software: Gecko SDK versions through 4.4.0 (and earlier per multiple sources). Impact: potential signature spoofing via ...

7.5CVSS6.6AI score0.00396EPSS
Exploits0References1Affected Software1
osv
osv
added 2024/02/21 6:13 p.m.11 views

CVE-2024-22473 Uninitialized TRNG used for ECDSA after EM2/EM3 sleep for VSE devices

TRNG is used before initialization by ECDSA signing driver when exiting EM2/EM3 on Virtual Secure Vault VSE devices. This defect may allow Signature Spoofing by Key Recreation.This issue affects Gecko SDK through v4.4.0...

6.8CVSS6.7AI score0.00396EPSS
Exploits0References4
Rows per page
Query Builder