CVE-2024-22473 - Vulnerability Details - OpenCVE

TRNG is used before initialization by ECDSA signing driver when exiting EM2/EM3 on Virtual Secure Vault (VSE) devices. This defect may allow Signature Spoofing by Key Recreation.This issue affects Gecko SDK through v4.4.0.

No CVSS v4.0

Attack Vector Network

Attack Complexity High

Privileges Required None

Scope Changed

Confidentiality Impact None

Integrity Impact High

Availability Impact None

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Exploitation none

Automatable no

Technical Impact partial

Vendors	Products
Silabs	Gecko Software Development Kit

Configuration 1 [-]

cpe:2.3:a:silabs:gecko_software_development_kit:*:*:*:*:*:*:*:*

No data.

References

Link	Providers
https://community.silabs.com/068Vm000001FrjT

History

Wed, 12 Feb 2025 17:15:00 +0000

Type	Values Removed	Values Added
First Time appeared		Silabs Silabs gecko Software Development Kit
CPEs		cpe:2.3:a:silabs:gecko_software_development_kit::::::::
Vendors & Products		Silabs Silabs gecko Software Development Kit

Fri, 27 Sep 2024 17:45:00 +0000

Type	Values Removed	Values Added
Weaknesses	CWE-330 CWE-338 CWE-908

Fri, 27 Sep 2024 17:30:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

Fri, 27 Sep 2024 16:30:00 +0000

Type	Values Removed	Values Added
Description	TRNG is used before initialization by ECDSA signing driver when exiting EM2/EM3 on Virtual Secure Vault (VSE) devices. This defect may allow Signature Spoofing by Key Recreation.This issue affects Gecko SDK through v4.4.0.	TRNG is used before initialization by ECDSA signing driver when exiting EM2/EM3 on Virtual Secure Vault (VSE) devices. This defect may allow Signature Spoofing by Key Recreation.This issue affects Gecko SDK through v4.4.0.
Weaknesses		CWE-1279 CWE-331

MITRE

Status: PUBLISHED

Assigner: Silabs

Published: 2024-02-21T18:13:10.241Z

Updated: 2024-09-27T16:06:44.910Z

Reserved: 2024-01-10T19:20:24.393Z

Link: CVE-2024-22473

Vulnrichment

Updated: 2024-08-01T22:51:09.859Z

NVD

Status : Analyzed

Published: 2024-02-21T19:15:08.813

Modified: 2025-02-12T16:52:42.397

Link: CVE-2024-22473

Redhat

No data.

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2024-22473", "assignerOrgId": "030b2754-1501-44a4-bef8-48be86a33bf4", "state": "PUBLISHED", "assignerShortName": "Silabs", "dateReserved": "2024-01-10T19:20:24.393Z", "datePublished": "2024-02-21T18:13:10.241Z", "dateUpdated": "2024-09-27T16:06:44.910Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "affected", "platforms": ["ARM"], "product": "GSDK", "repo": "https://github.com/SiliconLabs/gecko_sdk/releases", "vendor": "silabs.com", "versions": [{"lessThanOrEqual": "4.4.0", "status": "affected", "version": "0", "versionType": "4.4.x and earlier"}]}], "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "TRNG is used before initialization by ECDSA signing driver when exiting EM2/EM3 on Virtual Secure Vault (VSE) devices. This defect may allow Signature Spoofing by Key Recreation.<p>This issue affects Gecko SDK through v4.4.0.</p>"}], "value": "TRNG is used before initialization by ECDSA signing driver when exiting EM2/EM3 on Virtual Secure Vault (VSE) devices. This defect may allow Signature Spoofing by Key Recreation.This issue affects Gecko SDK through v4.4.0."}], "impacts": [{"capecId": "CAPEC-474", "descriptions": [{"lang": "en", "value": "CAPEC-474 Signature Spoofing by Key Theft"}]}, {"capecId": "CAPEC-485", "descriptions": [{"lang": "en", "value": "CAPEC-485 Signature Spoofing by Key Recreation"}]}], "metrics": [{"cvssV3_1": {"attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 6.8, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:N", "version": "3.1"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-1279", "description": "CWE-1279 Cryptographic Operations are run Before Supporting Units are Ready", "lang": "en", "type": "CWE"}]}, {"descriptions": [{"cweId": "CWE-331", "description": "CWE-331 Insufficient Entropy", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "030b2754-1501-44a4-bef8-48be86a33bf4", "shortName": "Silabs", "dateUpdated": "2024-09-27T16:06:44.910Z"}, "references": [{"url": "https://community.silabs.com/068Vm000001FrjT"}], "source": {"discovery": "UNKNOWN"}, "title": "Uninitialized TRNG used for ECDSA after EM2/EM3 sleep for VSE devices", "x_generator": {"engine": "Vulnogram 0.1.0-dev"}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2024-22473", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2024-02-21T20:24:22.961810Z"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-07-05T17:21:52.747Z"}}, {"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-01T22:51:09.859Z"}, "title": "CVE Program Container", "references": [{"url": "https://community.silabs.com/068Vm000001FrjT", "tags": ["x_transferred"]}]}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CVE Program Container", "references": [{"url": "https://community.silabs.com/068Vm000001FrjT", "tags": ["x_transferred"]}], "providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-01T22:51:09.859Z"}}, {"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2024-22473", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2024-02-21T20:24:22.961810Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-07-05T15:20:40.450Z"}}], "cna": {"title": "Uninitialized TRNG used for ECDSA after EM2/EM3 sleep for VSE devices", "source": {"discovery": "UNKNOWN"}, "impacts": [{"capecId": "CAPEC-474", "descriptions": [{"lang": "en", "value": "CAPEC-474 Signature Spoofing by Key Theft"}]}, {"capecId": "CAPEC-485", "descriptions": [{"lang": "en", "value": "CAPEC-485 Signature Spoofing by Key Recreation"}]}], "metrics": [{"format": "CVSS", "cvssV3_1": {"scope": "CHANGED", "version": "3.1", "baseScore": 6.8, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:N", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "HIGH", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "affected": [{"repo": "https://github.com/SiliconLabs/gecko_sdk/releases", "vendor": "silabs.com", "product": "GSDK", "versions": [{"status": "affected", "version": "0", "versionType": "4.4.x and earlier", "lessThanOrEqual": "4.4.0"}], "platforms": ["ARM"], "defaultStatus": "affected"}], "references": [{"url": "https://community.silabs.com/068Vm000001FrjT"}], "x_generator": {"engine": "Vulnogram 0.1.0-dev"}, "descriptions": [{"lang": "en", "value": "TRNG is used before initialization by ECDSA signing driver when exiting EM2/EM3 on Virtual Secure Vault (VSE) devices. This defect may allow Signature Spoofing by Key Recreation.This issue affects Gecko SDK through v4.4.0.", "supportingMedia": [{"type": "text/html", "value": "TRNG is used before initialization by ECDSA signing driver when exiting EM2/EM3 on Virtual Secure Vault (VSE) devices. This defect may allow Signature Spoofing by Key Recreation.<p>This issue affects Gecko SDK through v4.4.0.</p>", "base64": false}]}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-1279", "description": "CWE-1279 Cryptographic Operations are run Before Supporting Units are Ready"}]}, {"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-331", "description": "CWE-331 Insufficient Entropy"}]}], "providerMetadata": {"orgId": "030b2754-1501-44a4-bef8-48be86a33bf4", "shortName": "Silabs", "dateUpdated": "2024-09-27T16:06:44.910Z"}}}, "cveMetadata": {"cveId": "CVE-2024-22473", "state": "PUBLISHED", "dateUpdated": "2024-09-27T16:06:44.910Z", "dateReserved": "2024-01-10T19:20:24.393Z", "assignerOrgId": "030b2754-1501-44a4-bef8-48be86a33bf4", "datePublished": "2024-02-21T18:13:10.241Z", "assignerShortName": "Silabs"}, "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:silabs:gecko_software_development_kit:*:*:*:*:*:*:*:*", "matchCriteriaId": "F8DA3192-03D2-4218-9561-641A2E54C46F", "versionEndIncluding": "4.4.0", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "TRNG is used before initialization by ECDSA signing driver when exiting EM2/EM3 on Virtual Secure Vault (VSE) devices. This defect may allow Signature Spoofing by Key Recreation.This issue affects Gecko SDK through v4.4.0."}, {"lang": "es", "value": "TRNG se utiliza antes de la inicializaci\u00f3n mediante el controlador de firma ECDSA al salir de EM2/EM3 en dispositivos Virtual Secure Vault (VSE). Este defecto puede permitir la suplantaci\u00f3n de firmas mediante recreaci\u00f3n clave. Este problema afecta a Gecko SDK hasta la versi\u00f3n 4.4.0."}], "id": "CVE-2024-22473", "lastModified": "2025-02-12T16:52:42.397", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 6.8, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:N", "version": "3.1"}, "exploitabilityScore": 2.2, "impactScore": 4.0, "source": "product-security@silabs.com", "type": "Secondary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2024-02-21T19:15:08.813", "references": [{"source": "product-security@silabs.com", "tags": ["Permissions Required"], "url": "https://community.silabs.com/068Vm000001FrjT"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Permissions Required"], "url": "https://community.silabs.com/068Vm000001FrjT"}], "sourceIdentifier": "product-security@silabs.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-331"}, {"lang": "en", "value": "CWE-1279"}], "source": "product-security@silabs.com", "type": "Secondary"}, {"description": [{"lang": "en", "value": "CWE-331"}], "source": "nvd@nist.gov", "type": "Primary"}]}