Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An improper certificate validation issue was discovered in NXP i.MX 28 i.MX 50, i.MX 53, i.MX 7Solo i.MX 7Dual Vybrid VF3xx, Vybrid VF5xx, Vybrid VF6xx, i.MX 6ULL, i.MX 6UltraLite, i.MX 6SoloLite, i.MX 6Solo, i.MX 6DualLite, i.MX 6SoloX, i.MX 6Dual, i.MX 6Quad, i.MX 6DualPlus, and i.MX 6QuadPlus. When the device is configured in security enabled configuration, under certain conditions it is possible to bypass the signature verification by using a specially crafted certificate leading to the execution of an unsigned image.
CVSS Information
N/A
Vulnerability Type
证书验证不恰当
Vulnerability Title
多款NXP i.MX产品安全漏洞
Vulnerability Description
NXP i.MX 50等都是荷兰NXP Semiconductors公司的不同系列的微型处理器产品。 多款NXP i.MX产品中存在安全漏洞,该漏洞源于程序没有正确验证证书。攻击者可利用该漏洞绕过签名验证,使设备加载未授权的图片,影响安全启动。以下设备受到影响:NXP i.MX 28,i.MX 50,i.MX 53,i.MX 7Solo i.MX 7Dual Vybrid VF3xx,Vybrid VF5xx,Vybrid VF6xx,i.MX 6ULL,i.MX 6UltraLite,i.MX 6Sol
CVSS Information
N/A
Vulnerability Type
N/A