In this physical attack, an attacker may potentially exploit the Zynq-7000 SoC First Stage Boot Loader (FSBL) by bypassing authentication and loading a malicious image onto the device. This in turn may further allow the attacker to perform additional attacks such as such as using the device as a decryption oracle. An anticipated mitigation via a 2022.1 patch will resolve the issue.
[
{
"platforms": [
"Zynq-7000 SoC FSBL"
],
"product": "Zynq-7000 SoC FSBL",
"vendor": "AMD-Xilinx",
"versions": [
{
"lessThanOrEqual": "2022.1",
"status": "affected",
"version": "2021.2",
"versionType": "custom"
}
]
}
]