MicrochipVULNRICHMENT:CVE-2024-4760CVE-2024-4760 Voltage glitch during startup of the EEFC NVM controller can bypass the security bit
CVSS3
Attack Vector
PHYSICAL
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:P/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
AI Score
Confidence
Low
EPSS
Percentile
9.0%
SSVC
Exploitation
none
Automatable
no
Technical Impact
total
A voltage glitch during the startup of EEFC NVM controllers on Microchip SAM E70/S70/V70/V71 microcontrollers allows access to the memory bus via the debug interface even if the security bit is set.
ADP Affected
[
{
"cpes": [
"cpe:2.3:a:amtel:same70:*:*:*:*:*:*:*:*"
],
"vendor": "amtel",
"product": "same70",
"versions": [
{
"status": "affected",
"version": "*"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:a:amtel:sams70:*:*:*:*:*:*:*:*"
],
"vendor": "amtel",
"product": "sams70",
"versions": [
{
"status": "affected",
"version": "*"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:a:amtel:samv70:*:*:*:*:*:*:*:*"
],
"vendor": "amtel",
"product": "samv70",
"versions": [
{
"status": "affected",
"version": "*"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:a:amtel:samv71:*:*:*:*:*:*:*:*"
],
"vendor": "amtel",
"product": "samv71",
"versions": [
{
"status": "affected",
"version": "*"
}
],
"defaultStatus": "unknown"
}
]
CVSS3
Attack Vector
PHYSICAL
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:P/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
AI Score
Confidence
Low
EPSS
Percentile
9.0%
SSVC
Exploitation
none
Automatable
no
Technical Impact
total