CVE-2023-41097 Information

Description

An Observable Timing Discrepancy Covert Timing Channel vulnerability in Silabs GSDK on ARM potentially allows Padding Oracle Crypto Attack on CBC PKCS7.This issue affects GSDK: through 4.4.0.

Reference

https://siliconlabs.lightning.force.com/sfc/servlet.shepherd/document/download/069Vm0000007rArIAI?operationContext=S1 https://github.com/SiliconLabs/gecko_sdk/releases