Vulnerabilities > Silabs > Gecko Software Development KIT
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-11-14 | CVE-2023-25181 | Out-of-bounds Write vulnerability in multiple products A heap-based buffer overflow vulnerability exists in the HTTP Server functionality of Weston Embedded uC-HTTP v3.01.01. | 9.8 |
| 2023-11-14 | CVE-2023-27882 | Out-of-bounds Write vulnerability in multiple products A heap-based buffer overflow vulnerability exists in the HTTP Server form boundary functionality of Weston Embedded uC-HTTP v3.01.01. | 9.8 |
| 2023-11-14 | CVE-2023-28379 | Out-of-bounds Write vulnerability in multiple products A memory corruption vulnerability exists in the HTTP Server form boundary functionality of Weston Embedded uC-HTTP v3.01.01. | 9.8 |
| 2023-11-14 | CVE-2023-28391 | Out-of-bounds Write vulnerability in multiple products A memory corruption vulnerability exists in the HTTP Server header parsing functionality of Weston Embedded uC-HTTP v3.01.01. | 9.8 |
| 2023-11-14 | CVE-2023-31247 | Out-of-bounds Write vulnerability in multiple products A memory corruption vulnerability exists in the HTTP Server Host header parsing functionality of Weston Embedded uC-HTTP v3.01.01. | 9.8 |
| 2023-09-29 | CVE-2023-3024 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Silabs Gecko Software Development KIT Forcing the Bluetooth LE stack to segment 'prepare write response' packets can lead to an out-of-bounds memory access. | 6.5 |
| 2023-07-28 | CVE-2023-3488 | Use of Uninitialized Resource vulnerability in Silabs Gecko Software Development KIT Uninitialized buffer in GBL parser in Silicon Labs GSDK v4.3.0 and earlier allows attacker to leak data from Secure stack via malformed GBL file. | 5.5 |
| 2023-06-15 | CVE-2023-2747 | Use of Uninitialized Resource vulnerability in Silabs Gecko Software Development KIT The initialization vector (IV) used by the secure engine (SE) for encrypting data stored in the SE flash memory is uninitialized. | 5.5 |
| 2023-06-15 | CVE-2023-2686 | Classic Buffer Overflow vulnerability in Silabs Gecko Software Development KIT Buffer overflow in Wi-Fi Commissioning MicriumOS example in Silicon Labs Gecko SDK v4.2.3 or earlier allows connected device to write payload onto the stack. | 9.8 |
| 2023-06-02 | CVE-2023-2687 | Incorrect Calculation of Buffer Size vulnerability in Silabs Gecko Software Development KIT Buffer overflow in Platform CLI component in Silicon Labs Gecko SDK v4.2.1 and earlier allows user to overwrite limited structures on the heap. | 3.3 |