CVE-2023-0965

Source
https://cve.org/CVERecord?id=CVE-2023-0965
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-0965.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2023-0965
Published
2023-05-18T18:38:56.910Z
Modified
2026-07-08T06:08:16.056744194Z
Severity
  • 3.1 (Low) CVSS_V3 - CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N CVSS Calculator
Summary
Key duplication in GSDK
Details

Compiler removal of buffer clearing in slicryptoacctransparentkeyagreement in Silicon Labs Gecko Platform SDK v4.2.1 and earlier results in key material duplication to RAM.

Database specific
{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/0xxx/CVE-2023-0965.json",
    "cna_assigner": "Silabs",
    "cwe_ids": [
        "CWE-14"
    ]
}
References

Affected packages

Git / github.com/siliconlabs/gecko_sdk

Affected ranges

Type
GIT
Repo
https://github.com/siliconlabs/gecko_sdk
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed
Database specific
{
    "source": [
        "AFFECTED_FIELD",
        "CPE_RANGE"
    ],
    "cpe": "cpe:2.3:a:silabs:gecko_software_development_kit:*:*:*:*:*:*:*:*",
    "extracted_events": [
        {
            "introduced": "0"
        },
        {
            "fixed": "4.2.2"
        },
        {
            "last_affected": "4.2.1"
        }
    ]
}

Affected versions

v4.*
v4.2.0
v4.2.1

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-0965.json"