Vulnerabilities > Silabs
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-06-15 | CVE-2023-2747 | Use of Uninitialized Resource vulnerability in Silabs Gecko Software Development KIT The initialization vector (IV) used by the secure engine (SE) for encrypting data stored in the SE flash memory is uninitialized. | 5.5 |
| 2023-06-15 | CVE-2023-2686 | Classic Buffer Overflow vulnerability in Silabs Gecko Software Development KIT Buffer overflow in Wi-Fi Commissioning MicriumOS example in Silicon Labs Gecko SDK v4.2.3 or earlier allows connected device to write payload onto the stack. | 9.8 |
| 2023-06-02 | CVE-2023-2687 | Incorrect Calculation of Buffer Size vulnerability in Silabs Gecko Software Development KIT Buffer overflow in Platform CLI component in Silicon Labs Gecko SDK v4.2.1 and earlier allows user to overwrite limited structures on the heap. | 3.3 |
| 2023-05-18 | CVE-2023-0965 | Unspecified vulnerability in Silabs Gecko Software Development KIT Compiler removal of buffer clearing in sli_cryptoacc_transparent_key_agreement in Silicon Labs Gecko Platform SDK v4.2.1 and earlier results in key material duplication to RAM. | 7.5 |
| 2023-05-18 | CVE-2023-1132 | Unspecified vulnerability in Silabs Gecko Software Development KIT Compiler removal of buffer clearing in sli_se_driver_key_agreement in Silicon Labs Gecko Platform SDK v4.2.1 and earlier results in key material duplication to RAM. | 7.5 |
| 2023-05-18 | CVE-2023-2481 | Unspecified vulnerability in Silabs Gecko Software Development KIT Compiler removal of buffer clearing in sli_se_opaque_import_key in Silicon Labs Gecko Platform SDK v4.2.1 and earlier results in key material duplication to RAM. | 7.5 |
| 2023-05-18 | CVE-2023-32096 | Unspecified vulnerability in Silabs Gecko Software Development KIT Compiler removal of buffer clearing in sli_crypto_transparent_aead_encrypt_tag in Silicon Labs Gecko Platform SDK v4.2.1 and earlier results in key material duplication to RAM. | 7.5 |
| 2023-05-18 | CVE-2023-32097 | Unspecified vulnerability in Silabs Gecko Software Development KIT Compiler removal of buffer clearing in sli_crypto_transparent_aead_decrypt_tag in Silicon Labs Gecko Platform SDK v4.2.1 and earlier results in key material duplication to RAM. | 7.5 |
| 2023-05-18 | CVE-2023-32098 | Unspecified vulnerability in Silabs Gecko Software Development KIT Compiler removal of buffer clearing in sli_se_sign_message in Silicon Labs Gecko Platform SDK v4.2.1 and earlier results in key material duplication to RAM. | 7.5 |
| 2023-05-18 | CVE-2023-32099 | Unspecified vulnerability in Silabs Gecko Software Development KIT Compiler removal of buffer clearing in sli_se_sign_hash in Silicon Labs Gecko Platform SDK v4.2.1 and earlier results in key material duplication to RAM. | 7.5 |