Denial of Service Flaw in SiWx91x Devices by Silicon Labs
CVE-2024-8361

Currently unrated

Key Information:

Vendor: Silicon Labs
Vendor: CVE Published:; 7 January 2025

🔔 Create Silicon Labs Vulnerability Alert

What is CVE-2024-8361?

A vulnerability in SiWx91x devices involves the SHA2/224 hashing algorithm returning a 256-bit hash instead of the expected 224-bit. This discrepancy leads to a software assertion failure, resulting in a Denial of Service (DoS). If a watchdog timer is in place, the device can restart automatically once the timer expires. However, in scenarios lacking a watchdog, recovery necessitates a hard reset, impacting device availability and functionality.

References

https://community.silabs.com/068Vm00000I7zqo

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jan 7, 2025