Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
Vulnerability Details :

CVE-2023-5138

Summary
Assigner-Silabs
Assigner Org ID-030b2754-1501-44a4-bef8-48be86a33bf4
Published At-03 Jan, 2024 | 22:31
Updated At-03 Jun, 2025 | 14:43
Rejected At-
Credits

Glitch detection not active by default in Silicon Labs Secure Vault High devices

Glitch detection is not enabled by default for the CortexM33 core in Silicon Labs secure vault high parts EFx32xG2xB, except EFR32xG21B.

Vendors
-
Not available
Products
-
Metrics (CVSS)
VersionBase scoreBase severityVector
Weaknesses
Attack Patterns
Solution/Workaround
References
HyperlinkResource Type
EPSS History
Score
Latest Score
-
N/A
No data available for selected date range
Percentile
Latest Percentile
-
N/A
No data available for selected date range
Stakeholder-Specific Vulnerability Categorization (SSVC)
▼Common Vulnerabilities and Exposures (CVE)
cve.org
Assigner:Silabs
Assigner Org ID:030b2754-1501-44a4-bef8-48be86a33bf4
Published At:03 Jan, 2024 | 22:31
Updated At:03 Jun, 2025 | 14:43
Rejected At:
▼CVE Numbering Authority (CNA)
Glitch detection not active by default in Silicon Labs Secure Vault High devices

Glitch detection is not enabled by default for the CortexM33 core in Silicon Labs secure vault high parts EFx32xG2xB, except EFR32xG21B.

Affected Products
Vendor
silabs.com
Product
GSDK
Default Status
unaffected
Versions
Affected
  • From 1.0 before 4.4.0 (semver)
Problem Types
TypeCWE IDDescription
CWECWE-1319CWE-1319 Improper Protection against Electromagnetic Fault Injection (EM-FI)
Type: CWE
CWE ID: CWE-1319
Description: CWE-1319 Improper Protection against Electromagnetic Fault Injection (EM-FI)
Metrics
VersionBase scoreBase severityVector
3.16.8MEDIUM
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Version: 3.1
Base score: 6.8
Base severity: MEDIUM
Vector:
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Metrics Other Info
Impacts
CAPEC IDDescription
CAPEC-624CAPEC-624 Fault Injection
CAPEC ID: CAPEC-624
Description: CAPEC-624 Fault Injection
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
https://github.com/SiliconLabs/gecko_sdk
N/A
https://community.silabs.com/069Vm0000004f6DIAQ
N/A
Hyperlink: https://github.com/SiliconLabs/gecko_sdk
Resource: N/A
Hyperlink: https://community.silabs.com/069Vm0000004f6DIAQ
Resource: N/A
▼Authorized Data Publishers (ADP)
1. CVE Program Container
Affected Products
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
https://github.com/SiliconLabs/gecko_sdk
x_transferred
https://community.silabs.com/069Vm0000004f6DIAQ
x_transferred
Hyperlink: https://github.com/SiliconLabs/gecko_sdk
Resource:
x_transferred
Hyperlink: https://community.silabs.com/069Vm0000004f6DIAQ
Resource:
x_transferred
2. CISA ADP Vulnrichment
Affected Products
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
Information is not available yet
▼National Vulnerability Database (NVD)
nvd.nist.gov
Source:product-security@silabs.com
Published At:03 Jan, 2024 | 23:15
Updated At:27 Sep, 2024 | 16:15

Glitch detection is not enabled by default for the CortexM33 core in Silicon Labs secure vault high parts EFx32xG2xB, except EFR32xG21B.

CISA Catalog
Date AddedDue DateVulnerability NameRequired Action
N/A
Date Added: N/A
Due Date: N/A
Vulnerability Name: N/A
Required Action: N/A
Metrics
TypeVersionBase scoreBase severityVector
Primary3.16.8MEDIUM
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Secondary3.16.8MEDIUM
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Type: Primary
Version: 3.1
Base score: 6.8
Base severity: MEDIUM
Vector:
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Type: Secondary
Version: 3.1
Base score: 6.8
Base severity: MEDIUM
Vector:
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CPE Matches
silabs
silabs
>>gecko_software_development_kit>>Versions from 1.0.0(inclusive) to 4.4.0(exclusive)
cpe:2.3:a:silabs:gecko_software_development_kit:*:*:*:*:*:*:*:*
Weaknesses
CWE IDTypeSource
CWE-909Primarynvd@nist.gov
CWE-1319Secondaryproduct-security@silabs.com
CWE ID: CWE-909
Type: Primary
Source: nvd@nist.gov
CWE ID: CWE-1319
Type: Secondary
Source: product-security@silabs.com
Evaluator Description
Evaluator Impact

Evaluator Solution

Vendor Statements
References
HyperlinkSourceResource
https://community.silabs.com/069Vm0000004f6DIAQproduct-security@silabs.com
Permissions Required
https://github.com/SiliconLabs/gecko_sdkproduct-security@silabs.com
Product
Hyperlink: https://community.silabs.com/069Vm0000004f6DIAQ
Source: product-security@silabs.com
Resource:
Permissions Required
Hyperlink: https://github.com/SiliconLabs/gecko_sdk
Source: product-security@silabs.com
Resource:
Product

Change History

0
Information is not available yet

Similar CVEs

4Records found
Details not found