CVE Vulnerabilities

CVE-2024-9055

Insufficient Entropy

Published: Mar 17, 2025 | Modified: Mar 17, 2025
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
RedHat/V2
RedHat/V3
Ubuntu

The DPA countermeasures on Silicon Labs Series 2 devices are not reseeded periodically as they should be. This may allow an attacker to eventually extract secret keys through a DPA attack.

Weakness

The product uses an algorithm or scheme that produces insufficient entropy, leaving patterns or clusters of values that are more likely to occur than others.

Potential Mitigations

References