6.8

CVE-2023-35818

EPSS 0.13%
Veröffentlicht 17.07.2023 16:15:09
Zuletzt bearbeitet 21.11.2024 08:08:45
Quelle cve@mitre.org
CVE-Watchlists
Login
Unerledigt
Login

An issue was discovered on Espressif ESP32 3.0 (ESP32_rev300 ROM) devices. An EMFI attack on ECO3 provides the attacker with a capability to influence the PC value at the CPU context level, regardless of Secure Boot and Flash Encryption status. By using this capability, the attacker can exploit another behavior in the chip to gain unauthorized access to the ROM download mode. Access to ROM download mode may be further exploited to read the encrypted flash content in cleartext format or execute stub code.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 5

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Espressif ≫ Esp32-d0wd-v3 Firmware Version3.0

Espressif ≫ Esp32-d0wd-v3 Version-

Espressif ≫ Esp32-d0wd-v3 Firmware Version3.1

Espressif ≫ Esp32-d0wd-v3 Version-

Espressif ≫ Esp32-d0wdr2-v3 Firmware Version3.0

Espressif ≫ Esp32-d0wdr2-v3 Version-

Espressif ≫ Esp32-d0wdr2-v3 Firmware Version3.1

Espressif ≫ Esp32-d0wdr2-v3 Version-

Espressif ≫ Esp32-u4wdh Firmware Version3.0

Espressif ≫ Esp32-u4wdh Version-

Espressif ≫ Esp32-u4wdh Firmware Version3.1

Espressif ≫ Esp32-u4wdh Version-

Espressif ≫ Esp32-pico-v3 Firmware Version3.0

Espressif ≫ Esp32-pico-v3 Version-

Espressif ≫ Esp32-pico-v3 Firmware Version3.1

Espressif ≫ Esp32-pico-v3 Version-

Espressif ≫ Esp32-pico-v3-02 Firmware Version3.0

Espressif ≫ Esp32-pico-v3-02 Version-

Espressif ≫ Esp32-pico-v3-02 Firmware Version3.1

Espressif ≫ Esp32-pico-v3-02 Version-

Espressif ≫ Esp32-pico-d4 Firmware Version3.0

Espressif ≫ Esp32-pico-d4 Version-

Espressif ≫ Esp32-pico-d4 Firmware Version3.1

Espressif ≫ Esp32-pico-d4 Version-

Espressif ≫ Esp32-wroom-32e Firmware Version3.0

Espressif ≫ Esp32-wroom-32e Version-

Espressif ≫ Esp32-wroom-32e Firmware Version3.1

Espressif ≫ Esp32-wroom-32e Version-

Espressif ≫ Esp32-wroom-32ue Firmware Version3.0

Espressif ≫ Esp32-wroom-32ue Version-

Espressif ≫ Esp32-wroom-32ue Firmware Version3.1

Espressif ≫ Esp32-wroom-32ue Version-

Espressif ≫ Esp32-wroom-da Firmware Version3.0

Espressif ≫ Esp32-wroom-da Version-

Espressif ≫ Esp32-wroom-da Firmware Version3.1

Espressif ≫ Esp32-wroom-da Version-

Espressif ≫ Esp32-wrover-e Firmware Version3.0

Espressif ≫ Esp32-wrover-e Version-

Espressif ≫ Esp32-wrover-e Firmware Version3.1

Espressif ≫ Esp32-wrover-e Version-

Espressif ≫ Esp32-wrover-ie Firmware Version3.0

Espressif ≫ Esp32-wrover-ie Version-

Espressif ≫ Esp32-wrover-ie Firmware Version3.1

Espressif ≫ Esp32-wrover-ie Version-

Espressif ≫ Esp32-mini-1 Firmware Version3.0

Espressif ≫ Esp32-mini-1 Version-

Espressif ≫ Esp32-mini-1 Firmware Version3.1

Espressif ≫ Esp32-mini-1 Version-

Espressif ≫ Esp32-mini-1u Firmware Version3.0

Espressif ≫ Esp32-mini-1u Version-

Espressif ≫ Esp32-mini-1u Firmware Version3.1

Espressif ≫ Esp32-mini-1u Version-

Espressif ≫ Esp32-pico-mini-02 Firmware Version3.0

Espressif ≫ Esp32-pico-mini-02 Version-

Espressif ≫ Esp32-pico-mini-02 Firmware Version3.1

Espressif ≫ Esp32-pico-mini-02 Version-

Espressif ≫ Esp32-pico-mini-02u Firmware Version3.0

Espressif ≫ Esp32-pico-mini-02u Version-

Espressif ≫ Esp32-pico-mini-02u Firmware Version3.1

Espressif ≫ Esp32-pico-mini-02u Version-

Espressif ≫ Esp32-pico-v3-zero Firmware Version3.0

Espressif ≫ Esp32-pico-v3-zero Version-

Espressif ≫ Esp32-pico-v3-zero Firmware Version3.1

Espressif ≫ Esp32-pico-v3-zero Version-

Espressif ≫ Esp32-devkitc Firmware Version3.0

Espressif ≫ Esp32-devkitc Version-

Espressif ≫ Esp32-devkitc Firmware Version3.1

Espressif ≫ Esp32-devkitc Version-

Espressif ≫ Esp32-devkitm-1 Firmware Version3.0

Espressif ≫ Esp32-devkitm-1 Version-

Espressif ≫ Esp32-devkitm-1 Firmware Version3.1

Espressif ≫ Esp32-devkitm-1 Version-

Espressif ≫ Esp32-pico-kit Firmware Version3.0

Espressif ≫ Esp32-pico-kit Version-

Espressif ≫ Esp32-pico-kit Firmware Version3.1

Espressif ≫ Esp32-pico-kit Version-

Espressif ≫ Esp32-pico-v3-zero-devkit Firmware Version3.0

Espressif ≫ Esp32-pico-v3-zero-devkit Version-

Espressif ≫ Esp32-pico-v3-zero-devkit Firmware Version3.1

Espressif ≫ Esp32-pico-v3-zero-devkit Version-

Espressif ≫ Esp-eye Firmware Version3.0

Espressif ≫ Esp-eye Version-

Espressif ≫ Esp-eye Firmware Version3.1

Espressif ≫ Esp-eye Version-

Espressif ≫ Esp32-vaquita-dspg Firmware Version3.0

Espressif ≫ Esp32-vaquita-dspg Version-

Espressif ≫ Esp32-vaquita-dspg Firmware Version3.1

Espressif ≫ Esp32-vaquita-dspg Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.13%	0.327

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	6.8	0.9	5.9	CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Es wurden noch keine Informationen zu CWE veröffentlicht.

https://espressif.com

Product

https://www.espressif.com/sites/default/files/advisory_downloads/AR2023-005%20Security%20Advisory%20Concerning%20Bypassing%20Secure%20Boot%20and%20Flash%20Encryption%20Using%20EMFI%20EN.pdf

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2023-35818

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2023-35818

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2023-35818

EUVD