Description

An issue in the Certificate Authenticated Session Establishment (CASE) protocol for establishing secure sessions between two devices, as implemented in the Matter protocol versions before Matter 1.1 allows an attacker to replay manipulated CASE Sigma1 messages to make the device unresponsive until the device is power-cycled.

INFO

Published Date :

2024-07-24T08:02:52.777Z

Last Modified :

2024-08-01T20:05:08.480Z

Source :

Bitdefender
AFFECTED PRODUCTS

The following products are affected by CVE-2024-3297 vulnerability.

Vendors Products
Csa-iot
  • Matter
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-3297.

URL Resource
https://www.bitdefender.com/support/security-advisories/session-establishment-lock-up-during-replay-of-case-sigma1-messages/ cve-icon cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact