Missing Encryption of Security Keys vulnerability in Silicon Labs OpenThread SDK on 32 bit, ARM (SecureVault High modules) allows potential modification or extraction of network credentials stored in flash. This issue affects Silicon Labs OpenThread SDK: 2.3.1 and...
9.1CVSS
9.1AI Score
0.001EPSS
TIโs BLE stack caches and reuses the LTKโs property for a bonded mobile. A LTK can be an unauthenticated-and-no-MITM-protection key created by Just Works or an authenticated-and-MITM-protection key created by Passkey Entry, Numeric Comparison or OOB. Assume that a victim mobile uses secure pairing....
6.8CVSS
6.5AI Score
0.001EPSS
9.8CVSS
9.6AI Score
0.002EPSS