CVE-2023-41095

CVSS 3.1 Score 9.1 of 10 (high)

Details

Published Oct 26, 2023

Updated: Nov 7, 2023

CWE ID 311

Summary

CVE-2023-41095 is a vulnerability affecting the Silicon Labs OpenThread SDK on 32-bit ARM platforms with SecureVault High modules. The issue involves missing encryption of security keys, allowing an attacker to potentially modify or extract network credentials stored in flash memory. This vulnerability affects OpenThread SDK versions 2.3.1 and earlier.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Silabs

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/sbZa4B
https://www.cve.org/CVERecord?id=CVE-2023-41095
https://nvd.nist.gov/vuln/detail/CVE-2023-41095

Back to Vulnerability Database

CVE-2023-41095

CVSS 3.1 Score 9.1 of 10 (high)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations