Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Unconfigured memory protection modules in Motorola MTM5000
Vulnerability Description
Motorola MTM5000 series firmwares lack properly configured memory protection of pages shared between the OMAP-L138 ARM and DSP cores. The SoC provides two memory protection units, MPU1 and MPU2, to enforce the trust boundary between the two cores. Since both units are left unconfigured by the firmwares, an adversary with control over either core can trivially gain code execution on the other, by overwriting code located in shared RAM or DDR2 memory regions.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:L/I:H/A:H
Vulnerability Type
CWE-1260
Vulnerability Title
Motorola MTM5000 安全漏洞
Vulnerability Description
Motorola MTM5000是美国摩托罗拉(Motorola)公司的一种移动收音机。 Motorola MTM5000 存在安全漏洞,该漏洞源于缺乏对 OMAP-L138 ARM 和 DSP 内核之间共享页面的正确配置的内存保护,SoC 提供两个内存保护单元 MPU1 和 MPU2,以强制执行两个内核之间的信任边界,攻击者利用该漏洞可以控制其中一个核心,通过覆盖共享 RAM 或 DDR2 内存区域中的代码轻松获得另一个核心的代码执行权限。
CVSS Information
N/A
Vulnerability Type
N/A