Products
Silabs Bluetooth SDK
- through 8.0.0
Source
product-security@silabs.com
Tags
CVE-2023-41093 details
Published : July 12, 2024, 8:15 p.m.
Last Modified : July 12, 2024, 8:15 p.m.
Last Modified : July 12, 2024, 8:15 p.m.
Description
Use After Free vulnerability in Silicon Labs Bluetooth SDK on 32 bit, ARM may allow an attacker with precise timing capabilities to intercept a small number of packets intended for a recipient that has left the network.This issue affects Silabs Bluetooth SDK: through 8.0.0.
CVSS Score
1 | 2 | 3.1 | 4 | 5 | 6 | 7 | 8 | 9 | 10 |
---|
Weakness
Weakness | Name | Description |
---|---|---|
CWE-416 | Use After Free | Referencing memory after it has been freed can cause a program to crash, use unexpected values, or execute code. |
CVSS Data
Attack Vector
ADJACENT_NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
Base Score
3.1
Exploitability Score
1.6
Impact Score
1.4
Base Severity
LOW
Vector String : CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N
References
URL | Source |
---|---|
https://community.silabs.com/068Vm000007v4HP | product-security@silabs.com |
This website uses the NVD API, but is not approved or certified by it.