CVE-2023-0775

SiliconLabs/gecko_sdk

on github

Published

March 28, 2023

Severity

CVSS v3:

6.5 MEDIUM

CVSS v2:

N/A

Description

An invalid ‘prepare write request’ command can cause the Bluetooth LE stack to run out of memory and fail to be able to handle subsequent connection requests, resulting in a denial-of-service.

References

https://github.com/SiliconLabs/gecko_sdk
https://siliconlabs.lightning.force.com/sfc/servlet.shepherd/document/download/0698Y00000SMMyGQAX?operationContext=S1

Configurations

CPE23	Version Start	Version End	Exact Version
cpe:2.3:a:silabs:gecko_software_development_kit:5.1.0:::::::*	n/a	n/a	5.1.0
cpe:2.3:a:silabs:gecko_software_development_kit:5.1.1:::::::*	n/a	n/a	5.1.1

External Links

NVD - CVE-2023-0775