CVE-2023-4489

Name of the Vulnerable Software and Affected Versions Z/IP Gateway products running Silicon Labs Z/IP Gateway SDK versions prior to 7.18.3

Description The first S0 encryption key is generated with an uninitialized PRNG, making the first S0 key generated at startup predictable. This potentially allows network key prediction and unauthorized S0 network access.

Recommendations For versions prior to 7.18.3, update to a version that initializes the PRNG properly to prevent predictable S0 key generation. As a temporary workaround, consider regenerating the S0 encryption key after startup to minimize the risk of exploitation.