Vulnerabilities > CVE-2023-3488 - Use of Uninitialized Resource vulnerability in Silabs Gecko Software Development KIT
Attack vector
LOCAL Attack complexity
LOW Privileges required
NONE Confidentiality impact
HIGH Integrity impact
NONE Availability impact
NONE Summary
Uninitialized buffer in GBL parser in Silicon Labs GSDK v4.3.0 and earlier allows attacker to leak data from Secure stack via malformed GBL file.
Vulnerable Configurations
Common Weakness Enumeration (CWE)
References
- https://community.silabs.com/sfc/servlet.shepherd/document/download/0698Y00000Wi3HwQAJ?operationContext=S1
- https://community.silabs.com/sfc/servlet.shepherd/document/download/0698Y00000Wi3HwQAJ?operationContext=S1
- https://github.com/SiliconLabs/gecko_sdk/releases
- https://github.com/SiliconLabs/gecko_sdk/releases