Skip to main content

CWE-1279

Cryptographic Operations are run Before Supporting Units are Ready

1 CVEs Avg CVSS 9.8 MITRE
1
CRITICAL
0
HIGH
0
MEDIUM
0
LOW
0
POC
0
KEV

Monthly

CVE-2023-4489 CRITICAL Act Now

The first S0 encryption key is generated with an uninitialized PRNG in Z/IP Gateway products running Silicon Labs Z/IP Gateway SDK v7.18.3 and earlier. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Z Ip Gateway Sdk
NVD GitHub
CVSS 3.1
9.8
EPSS
0.5%
EPSS 1% CVSS 9.8
CRITICAL Act Now

The first S0 encryption key is generated with an uninitialized PRNG in Z/IP Gateway products running Silicon Labs Z/IP Gateway SDK v7.18.3 and earlier. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Z Ip Gateway Sdk
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy