CVE-2024-38433 Nuvoton - CWE-305: Authentication Bypass by Primary Weakness

Nuvoton - CWE-305: Authentication Bypass by Primary Weakness An attacker with write access to the SPI-Flash on an NPCM7xx BMC subsystem that uses the Nuvoton BootBlock reference code can modify the u-boot image header on flash parsed by the BootBlock which could lead to arbitrary code execution...

PT-2024-5458 · Nuvoton · Nuvoton Npcm7Xx Bmc Subsystem

Name of the Vulnerable Software and Affected Versions: Nuvoton NPCM7xx BMC subsystem affected versions not specified Description: The issue is related to an authentication bypass weakness in the Nuvoton BootBlock reference code used in the Nuvoton NPCM7xx BMC subsystem. An attacker with write...