Gecko Software Development Kit@4.4.0 Security Vulnerabilities and Issues — Gecko Software Development Kit@4.4.0 CVE List

Lucene search

SilabsGecko Software Development Kit4.4.0

2 matches found

CVE•added 2023/12/21 9:15 p.m.•48 views

CVE-2023-41097

An Observable Timing Discrepancy, Covert Timing Channel vulnerability in Silabs GSDK on ARM potentially allows Padding Oracle Crypto Attack on CBC PKCS7.This issue affects GSDK: through 4.4.0.

7.5CVSS5.8AI score0.00107EPSS

CVE•added 2024/02/21 7:15 p.m.•33 views

CVE-2024-22473

TRNG is used before initialization by ECDSA signing driver when exiting EM2/EM3 on Virtual Secure Vault (VSE) devices. This defect may allow Signature Spoofing by Key Recreation.This issue affects Gecko SDK through v4.4.0.

7.5CVSS6.6AI score0.00067EPSS