CVE-2023-3487

SiliconLabs/gecko_sdk

on github

Published

October 20, 2023

Severity

CVSS v3:

7.8 HIGH

CVSS v2:

N/A

Description

An integer overflow in Silicon Labs Gecko Bootloader version 4.3.1 and earlier allows unbounded memory access when reading from or writing to storage slots.

References

https://community.silabs.com/s/contentdocument/0698Y00000ZmXqLQAV
https://github.com/SiliconLabs/gecko_sdk/releases

Configurations

CPE23	Version Start	Version End	Exact Version
cpe:2.3:a:silabs:gecko_bootloader::::::::	n/a	4.3.1 (including)	*

External Links

NVD - CVE-2023-3487