Lucene search
+L

27 matches found

redhatcve
redhatcve
added 2026/01/07 9:19 a.m.9 views

CVE-2024-2502

An application can be configured to block boot attempts after consecutive tamper resets are detected, which may not occur as expected. This is possible because the TAMPERRSTCAUSE register may not be properly updated when a level 4 tamper event a tamper reset occurs. This impacts Series 2 HSE-SVH...

2CVSS6.8AI score0.00171EPSS
Exploits0References1
euvd
euvd
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-27451

Malicious code in bioql PyPI...

2CVSS6.6AI score0.00171EPSS
Exploits0References1
euvd
euvd
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-15063

Malicious code in bioql PyPI...

1CVSS6.6AI score0.00184EPSS
Exploits0References1
euvd
euvd
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-6586

Malicious code in bioql PyPI...

4.2CVSS6.6AI score0.00173EPSS
Exploits0References2
nvd
nvd
added 2025/04/29 2:15 p.m.21 views

CVE-2025-3301

DPA countermeasures are unavailable for ECDH key agreement and EdDSA signing operations on Curve25519 and Curve448 on all Series 2 modules and SoCs due to a lack of hardware and software support. A successful DPA attack may result in exposure of confidential information. The best practice is to u...

1CVSS0.00184EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2025/04/29 1:47 p.m.24 views

CVE-2025-3301 DPA Countermeasures Unavailable for Certain Cryptographic Operations on Series 2 Devices

DPA countermeasures are unavailable for ECDH key agreement and EdDSA signing operations on Curve25519 and Curve448 on all Series 2 modules and SoCs due to a lack of hardware and software support. A successful DPA attack may result in exposure of confidential information. The best practice is to u...

1CVSS6.5AI score0.00184EPSS
Exploits0References1
cve
cve
added 2025/04/29 1:47 p.m.62 views

CVE-2025-3301

CVE-2025-3301 concerns DPA countermeasures being unavailable for ECDH key agreement and EdDSA signing on Curve25519 and Curve448 on all Series 2 modules and SoCs due to lack of hardware and software support. The consequence is potential exposure of confidential information if a DPA attack is succ...

1CVSS6.5AI score0.00184EPSS
Exploits0References1
cvelist
cvelist
added 2025/04/29 1:47 p.m.17 views

CVE-2025-3301 DPA Countermeasures Unavailable for Certain Cryptographic Operations on Series 2 Devices

DPA countermeasures are unavailable for ECDH key agreement and EdDSA signing operations on Curve25519 and Curve448 on all Series 2 modules and SoCs due to a lack of hardware and software support. A successful DPA attack may result in exposure of confidential information. The best practice is to u...

1CVSS0.00184EPSS
Exploits0References1
cnnvd
cnnvd
added 2025/04/29 12:0 a.m.5 views

Silicon Series 2 devices 安全漏洞

Silicon Series 2 devices are a family of devices from Silicon Corporation. A security vulnerability exists in Silicon Series 2 devices that stems from a lack of support for DPA countermeasures and could lead to the disclosure of confidential information...

1CVSS6.4AI score0.00184EPSS
Exploits0References1
ptsecurity
ptsecurity
added 2025/04/29 12:0 a.m.10 views

PT-2025-18163 · Series 2 · Series 2

Name of the Vulnerable Software and Affected Versions: Series 2 modules and SoCs affected versions not specified Description: A lack of hardware and software support for DPA countermeasures in ECDH key agreement and EdDSA signing operations on Curve25519 and Curve448 may result in exposure of...

1CVSS6.1AI score0.00184EPSS
Exploits0References5
redhatcve
redhatcve
added 2025/03/19 2:25 p.m.8 views

CVE-2024-9055

The DPA countermeasures on Silicon Labs' Series 2 devices are not reseeded periodically as they should be. This may allow an attacker to eventually extract secret keys through a DPA attack...

4.2CVSS7.2AI score0.00173EPSS
Exploits0References1
nvd
nvd
added 2025/03/17 2:15 p.m.11 views

CVE-2024-9055

The DPA countermeasures on Silicon Labs' Series 2 devices are not reseeded periodically as they should be. This may allow an attacker to eventually extract secret keys through a DPA attack...

4.2CVSS0.00173EPSS
Exploits0References1
cvelist
cvelist
added 2025/03/17 1:46 p.m.14 views

CVE-2024-9055 DPA Countermeasures need reseeding

The DPA countermeasures on Silicon Labs' Series 2 devices are not reseeded periodically as they should be. This may allow an attacker to eventually extract secret keys through a DPA attack...

4.2CVSS0.00173EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2025/03/17 1:46 p.m.6 views

CVE-2024-9055 DPA Countermeasures need reseeding

The DPA countermeasures on Silicon Labs' Series 2 devices are not reseeded periodically as they should be. This may allow an attacker to eventually extract secret keys through a DPA attack...

4.2CVSS4.5AI score0.00173EPSS
Exploits0References1
cve
cve
added 2025/03/17 1:46 p.m.43 views

CVE-2024-9055

The CVE-2024-9055 entry concerns Silicon Labs’ Series 2 devices where DPA countermeasures are not reseeded periodically, potentially allowing key extraction via a DPA attack. According to the cited metrics, the vulnerability requires physical access, has a base score of 4.2 (Medium), with high co...

4.2CVSS7AI score0.00173EPSS
Exploits0References1
cve
cve
added 2024/08/29 10:6 p.m.46 views

CVE-2024-2502

CVE-2024-2502 describes a tamper-handling bug in Silicon Labs Series 2 HSE-SVH devices where the TAMPERRSTCAUSE register may not be updated on a level 4 tamper event, potentially preventing the system from blocking boot attempts after consecutive tamper resets as intended. Affected products inclu...

2CVSS3.7AI score0.00171EPSS
Exploits0References1
cvelist
cvelist
added 2024/08/29 10:6 p.m.19 views

CVE-2024-2502 Failure to update the tamper reset cause register when a tamper event occurs

An application can be configured to block boot attempts after consecutive tamper resets are detected, which may not occur as expected. This is possible because the TAMPERRSTCAUSE register may not be properly updated when a level 4 tamper event a tamper reset occurs. This impacts Series 2 HSE-SVH...

2CVSS0.00171EPSS
Exploits0References1
osv
osv
added 2023/05/10 1:24 p.m.8 views

MAL-2023-816 Malicious code in stepping-stone-the-stone-series-2-by-dakota-willink-on-mac-full-volumes- (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware de4cf640f96f10961f05d0b92040c27c3ddac884865e0fc98755cc84eab11ada Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References1
cvelist
cvelist
added 2022/11/02 5:25 p.m.30 views

CVE-2022-24936 Gecko Standalone Bootloader vulnerability may allow bypassing application secure boot in some Series 2 devices

Out-of-Bounds error in GBL parser in Silicon Labs Gecko Bootloader version 4.0.1 and earlier allows attacker to overwrite flash Sign key and OTA decryption key via malicious bootloader upgrade...

8.3CVSS9.3AI score0.00804EPSS
Exploits1References2
apple
apple
added 2020/12/14 6:48 a.m.65 views

About the security content of watchOS 6.3 - Apple Support

About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available. Recent releases are listed on the Apple security updates page. Apple security documents reference...

7.8CVSS1.5AI score0.01061EPSS
Exploits0Affected Software1
Rows per page
Query Builder