Lucene search
+L

4 matches found

Vulnrichment
Vulnrichment
added 2024/02/21 6:13 p.m.19 views

CVE-2024-22473 Uninitialized TRNG used for ECDSA after EM2/EM3 sleep for VSE devices

TRNG is used before initialization by ECDSA signing driver when exiting EM2/EM3 on Virtual Secure Vault VSE devices. This defect may allow Signature Spoofing by Key Recreation.This issue affects Gecko SDK through v4.4.0...

6.8CVSS6.6AI score0.00396EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/02/21 6:13 p.m.33 views

CVE-2024-22473 Uninitialized TRNG used for ECDSA after EM2/EM3 sleep for VSE devices

TRNG is used before initialization by ECDSA signing driver when exiting EM2/EM3 on Virtual Secure Vault VSE devices. This defect may allow Signature Spoofing by Key Recreation.This issue affects Gecko SDK through v4.4.0...

6.8CVSS6.8AI score0.00396EPSS
Exploits0References1
CVE
CVE
added 2024/02/21 6:13 p.m.62 views

CVE-2024-22473

Gecko SDK vulnerability CVE-2024-22473 involves TRNG used before initialization by the ECDSA signing driver when exiting EM2/EM3 on Virtual Secure Vault (VSE) devices. Affected software: Gecko SDK versions through 4.4.0 (and earlier per multiple sources). Impact: potential signature spoofing via ...

7.5CVSS6.6AI score0.00396EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2024/02/21 6:13 p.m.11 views

CVE-2024-22473 Uninitialized TRNG used for ECDSA after EM2/EM3 sleep for VSE devices

TRNG is used before initialization by ECDSA signing driver when exiting EM2/EM3 on Virtual Secure Vault VSE devices. This defect may allow Signature Spoofing by Key Recreation.This issue affects Gecko SDK through v4.4.0...

6.8CVSS6.7AI score0.00396EPSS
Exploits0References4
Rows per page
Query Builder