Physical Access Vulnerability in Espressif ESP32 Chip
CVE-2019-17391

4.6MEDIUM

Key Information:

Vendor: Espressif
Status: Esp32-d0wd Firmware
Vendor: CVE Published:; 14 November 2019

Summary

A vulnerability in the Espressif ESP32 mask ROM code allows an attacker with physical access to exploit the first stage bootloader. This gap in security enables the reading of sensitive information stored in read-protected eFuses, including flash encryption and secure boot keys. The attacker can achieve this by injecting a glitch into the power supply shortly after the device resets, bypassing existing safeguards.

References

https://www.espressif.com/en/news/Security_Advisory_Conce...

x_refsource_CONFIRM

CVSS V3.1

Score:

4.6

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Physical

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Nov 14, 2019
Vulnerability Reserved
Oct 9, 2019