CVE-2023-3488
CVSS Score of 10 (low)
Details
Summary
CVE-2023-3488 is a vulnerability that affects Silicon Labs GSDK v4.3.0 and earlier versions. It is categorized as CWE-908, which refers to the use of uninitialized resources. The vulnerability allows an attacker to leak data from the Secure stack through a malformed GBL file. This vulnerability has a risk score of 26, indicating a significant threat level. The affected products include o7SxFB, o7SxFD, o7SxFC, s6ArNN, r1o1dt, o7SxFF, s6ArNM, o7SxFE, r1o1ds, o7SxFH, r1o1dv, o7SxFG, r1o1du, rXOc4j, rXOc4n, t5UtBM, rXOc4m, rXOc4l, rXOc4k,r1o1dx,r1o1dw,t4UgpG,r1KwqJ,r1KwqL, and r1KwqK. To remediate this vulnerability and mitigate the potential danger to an organization's confidentiality (high impact), it is recommended to update Silicon Labs GSDK to a version beyond v4.3.0.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Advisories, Assessments, and Mitigations
Prioritize, Pinpoint, and Act to Prevent Vulnerability Exploits with Recorded Future
- Gain complete coverage of your cyber, third party, and physical attack surface
- Proactively mitigate threats before they turn into costly attacks
- Make fast, effective, data-driven decisions