5.1.1

CVSS 6.5 - MEDIUM

Attack vector

ADJACENT_NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

low complexity

silabs

NVD

Published: 2023-03-28

Updated: 2024-11-21

Summary

An invalid ‘prepare write request’ command can cause the Bluetooth LE stack to run out of memory and fail to be able to handle subsequent connection requests, resulting in a denial-of-service.

Vulnerable Configurations

Part	Description	Count
Application	Silabs Silabs Gecko Software Development KIT 5.1.0 Silabs Gecko Software Development KIT 5.1.1	2

References

https://github.com/SiliconLabs/gecko_sdk
https://github.com/SiliconLabs/gecko_sdk
https://siliconlabs.lightning.force.com/sfc/servlet.shepherd/document/download/0698Y00000SMMyGQAX?operationContext=S1
https://siliconlabs.lightning.force.com/sfc/servlet.shepherd/document/download/0698Y00000SMMyGQAX?operationContext=S1