CVE-2023-0775

Опубликовано: 28 мар. 2023

Источник: nvd

CVSS3: 6.5

EPSS Низкий

Описание

An invalid ‘prepare write request’ command can cause the Bluetooth LE stack to run out of memory and fail to be able to handle subsequent connection requests, resulting in a denial-of-service.

Ссылки

https://github.com/SiliconLabs/gecko_sdk
Product
https://siliconlabs.lightning.force.com/sfc/servlet.shepherd/document/download/0698Y00000SMMyGQAX?operationContext=S1
Permissions Required
https://github.com/SiliconLabs/gecko_sdk
Product
https://siliconlabs.lightning.force.com/sfc/servlet.shepherd/document/download/0698Y00000SMMyGQAX?operationContext=S1
Permissions Required

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:silabs:gecko_software_development_kit:5.1.0:*:*:*:*:*:*:*

cpe:2.3:a:silabs:gecko_software_development_kit:5.1.1:*:*:*:*:*:*:*

EPSS

Процентиль: 9%

0.00033

Низкий

6.5 Medium

CVSS3

Дефекты

CWE-20

NVD-CWE-noinfo

Связанные уязвимости

GHSA-25xf-r6x8-6fw5