Vulnerabilities > CVE-2023-3488 - Use of Uninitialized Resource vulnerability in Silabs Gecko Software Development KIT

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

NONE

Availability impact

NONE

local

low complexity

NVD

Published: 2023-07-28

Updated: 2023-08-03

Summary

Uninitialized buffer in GBL parser in Silicon Labs GSDK v4.3.0 and earlier allows attacker to leak data from Secure stack via malformed GBL file.

Part	Description	Count
Application	Silabs Silabs Gecko Software Development KIT - Silabs Gecko Software Development KIT 2.0.0 Silabs Gecko Software Development KIT 2.0.1 Silabs Gecko Software Development KIT 2.0.2 Silabs Gecko Software Development KIT 2.1.0 Silabs Gecko Software Development KIT 2.1.1 Silabs Gecko Software Development KIT 2.1.2 Silabs Gecko Software Development KIT 2.1.3 Silabs Gecko Software Development KIT 2.2.0 Silabs Gecko Software Development KIT 2.2.1 Silabs Gecko Software Development KIT 4.0.0 Silabs Gecko Software Development KIT 4.0.1 Silabs Gecko Software Development KIT 4.0.2 Silabs Gecko Software Development KIT 4.1.0 Silabs Gecko Software Development KIT 4.1.1 Silabs Gecko Software Development KIT 4.1.2 Silabs Gecko Software Development KIT 4.1.3 Silabs Gecko Software Development KIT 4.1.4 Silabs Gecko Software Development KIT 4.2.0 Silabs Gecko Software Development KIT 4.2.1 Silabs Gecko Software Development KIT 4.2.2 Silabs Gecko Software Development KIT 4.2.3	22