15 matches found
EUVD-2020-19730
Malware in sbrugna...
EUVD-2020-19727
Malware in sbrugna...
EUVD-2020-19731
Malware in sbrugna...
CVE-2020-27208
The flash read-out protection RDP level is not enforced during the device initialization phase of the SoloKeys Solo 4.0.0 & Somu and the Nitrokey FIDO2 token. This allows an adversary to downgrade the RDP level and access secrets such as private ECC keys from SRAM via the debug interface...
CVE-2020-27211
Nordic Semiconductor nRF52840 devices through 2020-10-19 have improper protection against physical side channels. The flash read-out protection APPROTECT can be bypassed by injecting a fault during the boot phase...
CVE-2020-27212
STMicroelectronics STM32L4 devices through 2020-10-19 have incorrect access control. The flash read-out protection RDP can be degraded from RDP level 2 no access via debug interface to level 1 limited access via debug interface by injecting a fault during the boot phase...
openSUSE 15 Security Update : solo (openSUSE-SU-2021:1019-1)
The remote SUSE Linux SUSE15 host has a package installed that is affected by a vulnerability as referenced in the openSUSE-SU-2021:1019-1 advisory. - The flash read-out protection RDP level is not enforced during the device initialization phase of the SoloKeys Solo 4.0.0 & Somu and the Nitrokey...
CVE-2020-27212
STMicroelectronics STM32L4 devices through 2020-10-19 have incorrect access control. The flash read-out protection RDP can be degraded from RDP level 2 no access via debug interface to level 1 limited access via debug interface by injecting a fault during the boot phase...
CVE-2020-27208
The flash read-out protection RDP level is not enforced during the device initialization phase of the SoloKeys Solo 4.0.0 & Somu and the Nitrokey FIDO2 token. This allows an adversary to downgrade the RDP level and access secrets such as private ECC keys from SRAM via the debug interface...
Design/Logic Flaw
The flash read-out protection RDP level is not enforced during the device initialization phase of the SoloKeys Solo 4.0.0 & Somu and the Nitrokey FIDO2 token. This allows an adversary to downgrade the RDP level and access secrets such as private ECC keys from SRAM via the debug interface...
CVE-2020-27211
Nordic Semiconductor nRF52840 devices through 2020-10-19 have improper protection against physical side channels. The flash read-out protection APPROTECT can be bypassed by injecting a fault during the boot phase...
CVE-2020-27211
CVE-2020-27211 concerns Nordic Semiconductor nRF52x devices (notably the nRF52840) with insufficient protection against physical side channels. The APPROTECT flash read-out protection can be bypassed by injecting a fault during the boot phase, enabling potential exposure of sensitive data at boot...
CVE-2020-27212
STMicroelectronics STM32L4 devices through 2020-10-19 have incorrect access control. The flash read-out protection RDP can be degraded from RDP level 2 no access via debug interface to level 1 limited access via debug interface by injecting a fault during the boot phase...
CVE-2020-27208
The flash read-out protection RDP level is not enforced during the device initialization phase of the SoloKeys Solo 4.0.0 & Somu and the Nitrokey FIDO2 token. This allows an adversary to downgrade the RDP level and access secrets such as private ECC keys from SRAM via the debug interface...
CVE-2020-27208
The CVE-2020-27208 issue affects SoloKeys Solo 4.0.0 & Somu and the Nitrokey FIDO2 token, where the flash read-out protection (RDP) level is not enforced during device initialization, enabling an attacker with physical access to downgrade RDP and read secrets (e.g., private ECC keys) from SRAM vi...