An unvalidated input in Silicon Labs TrustZone implementation in v4.3.x and earlier of the Gecko SDK allows an attacker to access the trusted region of memory from the untrusted region.
References
Link | Resource |
---|---|
https://community.silabs.com/069Vm0000004NinIAE | Permissions Required |
https://github.com/SiliconLabs/gecko_sdk | Product |
Configurations
History
09 Jan 2024, 16:51
Type | Values Removed | Values Added |
---|---|---|
Summary |
|
|
CWE | NVD-CWE-noinfo | |
References | () https://community.silabs.com/069Vm0000004NinIAE - Permissions Required | |
References | () https://github.com/SiliconLabs/gecko_sdk - Product | |
CPE | cpe:2.3:a:silabs:gecko_software_development_kit:*:*:*:*:*:*:*:* | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 9.8 |
First Time |
Silabs gecko Software Development Kit
Silabs |
02 Jan 2024, 17:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-01-02 17:15
Updated : 2024-01-09 16:51
NVD link : CVE-2023-4280
Mitre link : CVE-2023-4280
CVE.ORG link : CVE-2023-4280
JSON object : View
Products Affected
silabs
- gecko_software_development_kit
CWE
NVD-CWE-noinfo
CWE-125
Out-of-bounds Read
CWE-20Improper Input Validation
CWE-787Out-of-bounds Write