Lucene search

[email protected]NVD:CVE-2020-12789

HistorySep 14, 2020 - 2:15 p.m.

CVE-2020-12789

2020-09-1414:15:10

CWE-798

[email protected]

web.nvd.nist.gov

secure monitor

microchip atmel atsama5

hardcoded key

encrypt

authenticate

secure applets

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:N/A:N

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

EPSS

0.002

Percentile

53.8%

JSON

The Secure Monitor in Microchip Atmel ATSAMA5 products use a hardcoded key to encrypt and authenticate secure applets.

Affected configurations

Nvd

Node

microchipatsama5d21c-cu_firmwareMatch-

AND

microchipatsama5d21c-cuMatch-

Node

microchipatsama5d21c-cur_firmwareMatch-

AND

microchipatsama5d21c-curMatch-

Node

microchipatsama5d22c-cn_firmwareMatch-

AND

microchipatsama5d22c-cnMatch-

Node

microchipatsama5d22c-cnr_firmwareMatch-

AND

microchipatsama5d22c-cnrMatch-

Node

microchipatsama5d22c-cu_firmwareMatch-

AND

microchipatsama5d22c-cuMatch-

Node

microchipatsama5d22c-cur_firmwareMatch-

AND

microchipatsama5d22c-curMatch-

Node

microchipatsama5d23c-cn_firmwareMatch-

AND

microchipatsama5d23c-cnMatch-

Node

microchipatsama5d23c-cnr_firmwareMatch-

AND

microchipatsama5d23c-cnrMatch-

Node

microchipatsama5d23c-cu_firmwareMatch-

AND

microchipatsama5d23c-cuMatch-

Node

microchipatsama5d23c-cur_firmwareMatch-

AND

microchipatsama5d23c-curMatch-

Node

microchipatsama5d24c-cu_firmwareMatch-

AND

microchipatsama5d24c-cuMatch-

Node

microchipatsama5d24c-cuf_firmwareMatch-

AND

microchipatsama5d24c-cufMatch-

Node

microchipatsama5d24c-cur_firmwareMatch-

AND

microchipatsama5d24c-curMatch-

Node

microchipatsama5d26c-cn_firmwareMatch-

AND

microchipatsama5d26c-cnMatch-

Node

microchipatsama5d26c-cnr_firmwareMatch-

AND

microchipatsama5d26c-cnrMatch-

Node

microchipatsama5d26c-cu_firmwareMatch-

AND

microchipatsama5d26c-cuMatch-

Node

microchipatsama5d26c-cur_firmwareMatch-

AND

microchipatsama5d26c-curMatch-

Node

microchipatsama5d27c-cn_firmwareMatch-

AND

microchipatsama5d27c-cnMatch-

Node

microchipatsama5d27c-cnr_firmwareMatch-

AND

microchipatsama5d27c-cnrMatch-

Node

microchipatsama5d27c-cu_firmwareMatch-

AND

microchipatsama5d27c-cuMatch-

Node

microchipatsama5d27c-cur_firmwareMatch-

AND

microchipatsama5d27c-curMatch-

Node

microchipatsama5d28c-cn_firmwareMatch-

AND

microchipatsama5d28c-cnMatch-

Node

microchipatsama5d28c-cnr_firmwareMatch-

AND

microchipatsama5d28c-cnrMatch-

Node

microchipatsama5d28c-cu_firmwareMatch-

AND

microchipatsama5d28c-cuMatch-

Node

microchipatsama5d28c-cur_firmwareMatch-

AND

microchipatsama5d28c-curMatch-

Node

microchipatsama5d27c-cnvao_firmwareMatch-

AND

microchipatsama5d27c-cnvaoMatch-

Node

microchipatsama5d27c-cnrvao_firmwareMatch-

AND

microchipatsama5d27c-cnrvaoMatch-

Node

microchipatsama5d225c-d1m-cur_firmwareMatch-

AND

microchipatsama5d225c-d1m-curMatch-

Node

microchipatsama5d27c-d5m-cu_firmwareMatch-

AND

microchipatsama5d27c-d5m-cuMatch-

Node

microchipatsama5d27c-d5m-cur_firmwareMatch-

AND

microchipatsama5d27c-d5m-curMatch-

Node

microchipatsama5d27c-d1g-cu_firmwareMatch-

AND

microchipatsama5d27c-d1g-cuMatch-

Node

microchipatsama5d27c-d1g-cur_firmwareMatch-

AND

microchipatsama5d27c-d1g-curMatch-

Node

microchipatsama5d28c-d1g-cu_firmwareMatch-

AND

microchipatsama5d28c-d1g-cuMatch-

Node

microchipatsama5d28c-d1g-cur_firmwareMatch-

AND

microchipatsama5d28c-d1g-curMatch-

Node

microchipatsama5d27c-ld1g-cu_firmwareMatch-

AND

microchipatsama5d27c-ld1g-cuMatch-

Node

microchipatsama5d27c-ld1g-cur_firmwareMatch-

AND

microchipatsama5d27c-ld1g-curMatch-

Node

microchipatsama5d27c-ld2g-cu_firmwareMatch-

AND

microchipatsama5d27c-ld2g-cuMatch-

Node

microchipatsama5d27c-ld2g-cur_firmwareMatch-

AND

microchipatsama5d27c-ld2g-curMatch-

Node

microchipatsama5d28c-ld1g-cu_firmwareMatch-

AND

microchipatsama5d28c-ld1g-cuMatch-

Node

microchipatsama5d28c-ld1g-cur_firmwareMatch-

AND

microchipatsama5d28c-ld1g-curMatch-

Node

microchipatsama5d28c-ld2g-cu_firmwareMatch-

AND

microchipatsama5d28c-ld2g-cuMatch-

Node

microchipatsama5d28c-ld2g-cur_firmwareMatch-

AND

microchipatsama5d28c-ld2g-curMatch-

Node

microchipatsama5d27-wlsom1_firmwareMatch-

AND

microchipatsama5d27-wlsom1Match-

Node

microchipatsama5d27-som1_firmwareMatch-

AND

microchipatsama5d27-som1Match-

Node

microchipatsama5d31a-cu_firmwareMatch-

AND

microchipatsama5d31a-cuMatch-

Node

microchipatsama5d31a-cur_firmwareMatch-

AND

microchipatsama5d31a-curMatch-

Node

microchipatsama5d31a-cfu_firmwareMatch-

AND

microchipatsama5d31a-cfuMatch-

Node

microchipatsama5d31a-cfur_firmwareMatch-

AND

microchipatsama5d31a-cfurMatch-

Node

microchipatsama5d33a-cu_firmwareMatch-

AND

microchipatsama5d33a-cuMatch-

Node

microchipatsama5d33a-cur_firmwareMatch-

AND

microchipatsama5d33a-curMatch-

Node

microchipatsama5d34a-cu_firmwareMatch-

AND

microchipatsama5d34a-cuMatch-

Node

microchipatsama5d34a-cur_firmwareMatch-

AND

microchipatsama5d34a-curMatch-

Node

microchipatsama5d35a-cu_firmwareMatch-

AND

microchipatsama5d35a-cuMatch-

Node

microchipatsama5d35a-cur_firmwareMatch-

AND

microchipatsama5d35a-curMatch-

Node

microchipatsama5d35a-cn_firmwareMatch-

AND

microchipatsama5d35a-cnMatch-

Node

microchipatsama5d35a-cnr_firmwareMatch-

AND

microchipatsama5d35a-cnrMatch-

Node

microchipatsama5d36a-cu_firmwareMatch-

AND

microchipatsama5d36a-cuMatch-

Node

microchipatsama5d36a-cur_firmwareMatch-

AND

microchipatsama5d36a-curMatch-

Node

microchipatsama5d36a-cn_firmwareMatch-

AND

microchipatsama5d36a-cnMatch-

Node

microchipatsama5d36a-cnr_firmwareMatch-

AND

microchipatsama5d36a-cnrMatch-

Node

microchipatsama5d41a-cu_firmwareMatch-

AND

microchipatsama5d41a-cuMatch-

Node

microchipatsama5d41a-cur_firmwareMatch-

AND

microchipatsama5d41a-curMatch-

Node

microchipatsama5d41b-cu_firmwareMatch-

AND

microchipatsama5d41b-cuMatch-

Node

microchipatsama5d41b-cur_firmwareMatch-

AND

microchipatsama5d41b-curMatch-

Node

microchipatsama5d42a-cu_firmwareMatch-

AND

microchipatsama5d42a-cuMatch-

Node

microchipatsama5d42a-cur_firmwareMatch-

AND

microchipatsama5d42a-curMatch-

Node

microchipatsama5d42b-cu_firmwareMatch-

AND

microchipatsama5d42b-cuMatch-

Node

microchipatsama5d42b-cur_firmwareMatch-

AND

microchipatsama5d42b-curMatch-

Node

microchipatsama5d43a-cu_firmwareMatch-

AND

microchipatsama5d43a-cuMatch-

Node

microchipatsama5d43a-cur_firmwareMatch-

AND

microchipatsama5d43a-curMatch-

Node

microchipatsama5d43b-cu_firmwareMatch-

AND

microchipatsama5d43b-cuMatch-

Node

microchipatsama5d43b-cur_firmwareMatch-

AND

microchipatsama5d43b-curMatch-

Node

microchipatsama5d44a-cu_firmwareMatch-

AND

microchipatsama5d44a-cuMatch-

Node

microchipatsama5d44a-cur_firmwareMatch-

AND

microchipatsama5d44a-curMatch-

Node

microchipatsama5d44b-cu_firmwareMatch-

AND

microchipatsama5d44b-cuMatch-

Node

microchipatsama5d44b-cur_firmwareMatch-

AND

microchipatsama5d44b-curMatch-

VendorProductVersionCPE
microchipatsama5d21c-cu_firmware-cpe:2.3:o:microchip:atsama5d21c-cu_firmware:-:*:*:*:*:*:*:*
microchipatsama5d21c-cu-cpe:2.3:h:microchip:atsama5d21c-cu:-:*:*:*:*:*:*:*
microchipatsama5d21c-cur_firmware-cpe:2.3:o:microchip:atsama5d21c-cur_firmware:-:*:*:*:*:*:*:*
microchipatsama5d21c-cur-cpe:2.3:h:microchip:atsama5d21c-cur:-:*:*:*:*:*:*:*
microchipatsama5d22c-cn_firmware-cpe:2.3:o:microchip:atsama5d22c-cn_firmware:-:*:*:*:*:*:*:*
microchipatsama5d22c-cn-cpe:2.3:h:microchip:atsama5d22c-cn:-:*:*:*:*:*:*:*
microchipatsama5d22c-cnr_firmware-cpe:2.3:o:microchip:atsama5d22c-cnr_firmware:-:*:*:*:*:*:*:*
microchipatsama5d22c-cnr-cpe:2.3:h:microchip:atsama5d22c-cnr:-:*:*:*:*:*:*:*
microchipatsama5d22c-cu_firmware-cpe:2.3:o:microchip:atsama5d22c-cu_firmware:-:*:*:*:*:*:*:*
microchipatsama5d22c-cu-cpe:2.3:h:microchip:atsama5d22c-cu:-:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
microchip	atsama5d21c-cu_firmware	-	cpe:2.3:o:microchip:atsama5d21c-cu_firmware:-:::::::*
microchip	atsama5d21c-cu	-	cpe:2.3:h:microchip:atsama5d21c-cu:-:::::::*
microchip	atsama5d21c-cur_firmware	-	cpe:2.3:o:microchip:atsama5d21c-cur_firmware:-:::::::*
microchip	atsama5d21c-cur	-	cpe:2.3:h:microchip:atsama5d21c-cur:-:::::::*
microchip	atsama5d22c-cn_firmware	-	cpe:2.3:o:microchip:atsama5d22c-cn_firmware:-:::::::*
microchip	atsama5d22c-cn	-	cpe:2.3:h:microchip:atsama5d22c-cn:-:::::::*
microchip	atsama5d22c-cnr_firmware	-	cpe:2.3:o:microchip:atsama5d22c-cnr_firmware:-:::::::*
microchip	atsama5d22c-cnr	-	cpe:2.3:h:microchip:atsama5d22c-cnr:-:::::::*
microchip	atsama5d22c-cu_firmware	-	cpe:2.3:o:microchip:atsama5d22c-cu_firmware:-:::::::*
microchip	atsama5d22c-cu	-	cpe:2.3:h:microchip:atsama5d22c-cu:-:::::::*

Rows per page:

1-10 of 1521

References

labs.f-secure.com/advisories/microchip-atsama5-soc-multiple-vulnerabilities/

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:N/A:N

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

EPSS

0.002

Percentile

53.8%

JSON

Related for NVD:CVE-2020-12789

cvelist1 prion1 cve1