Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
When booting a Zync-7000 SOC device from nand flash memory, the nand driver in the ROM does not validate the inputs when reading in any parameters in the nand’s parameter page. IF a field read in from the parameter page is too large, this causes a buffer overflow that could lead to arbitrary code execution. Physical access and modification of the board assembly on which the Zynq-7000 SoC device mounted is needed to replace the original NAND flash memory with a NAND flash emulation device for this attack to be successful.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Xilinx Zynq-7000 安全特征问题漏洞
Vulnerability Description
Xilinx Zynq-7000是美国 (Xilinx)公司的一个芯片。提供整合ARM?架构处理器的软体可编程能力,搭载FPGA的硬体可编程性,能达到关键分析与硬体加速,同时整合CPU、DSP 、ASSP,以及在单一元件上的混合式讯号功能。 Zync-7000 存在安全特征问题漏洞,该漏洞源于任何参数时不验证输入。
CVSS Information
N/A
Vulnerability Type
N/A