CVE-2023-5138 — MEDIUM (6.8)

Q: What is CVE-2023-5138?

CVE-2023-5138 is a vulnerability with a CVSS score of 6.8 (MEDIUM). Glitch detection is not enabled by default for the CortexM33 core in Silicon Labs secure vault high parts EFx32xG2xB, except EFR32xG21B.

Q: How severe is CVE-2023-5138?

CVE-2023-5138 has been rated MEDIUM with a CVSS base score of 6.8/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2023-5138?

Check the references section above for vendor advisories and patch information. Affected products include: Silabs Gecko Software Development Kit.

Vulnerability Description

Glitch detection is not enabled by default for the CortexM33 core in Silicon Labs secure vault high parts EFx32xG2xB, except EFR32xG21B.

CVSS Score

6.8

MEDIUM

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Attack Vector

PHYSICAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

HIGH

Affected Products

Vendor	Product	Versions
Silabs	Gecko Software Development Kit	>= 1.0.0, < 4.4.0

Related Weaknesses (CWE)

CWE-1319 CWE-909

References

https://community.silabs.com/069Vm0000004f6DIAQPermissions Required
https://github.com/SiliconLabs/gecko_sdkProduct
https://community.silabs.com/069Vm0000004f6DIAQPermissions Required
https://github.com/SiliconLabs/gecko_sdkProduct

FAQ

What is CVE-2023-5138?

CVE-2023-5138 is a vulnerability with a CVSS score of 6.8 (MEDIUM). Glitch detection is not enabled by default for the CortexM33 core in Silicon Labs secure vault high parts EFx32xG2xB, except EFR32xG21B.

How severe is CVE-2023-5138?

CVE-2023-5138 has been rated MEDIUM with a CVSS base score of 6.8/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2023-5138?

Check the references section above for vendor advisories and patch information. Affected products include: Silabs Gecko Software Development Kit.