Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
SK_LOAD timing side channel during AES module decryption in Texas Instruments OMAP L138
Vulnerability Description
The AES implementation in the Texas Instruments OMAP L138 (secure variants), present in mask ROM, suffers from a timing side channel which can be exploited by an adversary with non-secure supervisor privileges by managing cache contents and collecting timing information for different ciphertext inputs. Using this side channel, the SK_LOAD secure kernel routine can be used to recover the Customer Encryption Key (CEK).
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
Vulnerability Type
通过时间差异性导致的信息暴露
Vulnerability Title
Texas Instruments OMAP L138 安全漏洞
Vulnerability Description
Texas Instruments OMAP L138是美国德州仪器(Texas Instruments)公司的一个DSP+ARM工业处理器。 Texas Instruments OMAP L138 (secure variants)存在安全漏洞,该漏洞源于ES 实现容易受到定时侧通道的影响,攻击者利用该漏洞可以通过管理缓存内容收集不同密文输入的定时信息来利用定时侧通道,使用此侧通道,SK_LOAD 安全内核例程可用于恢复客户加密密钥 (CEK)。
CVSS Information
N/A
Vulnerability Type
N/A