Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An information-disclosure vulnerability exists on select NXP devices when configured in Serial Download Protocol (SDP) mode: i.MX RT 1010, i.MX RT 1015, i.MX RT 1020, i.MX RT 1050, i.MX RT 1060, i.MX 6 Family, i.MX 7Dual/Solo, i.MX 7ULP, i.MX 8M Quad, i.MX 8M Mini, and Vybrid. In a device security-enabled configuration, memory contents could potentially leak to physically proximate attackers via the respective SDP port in cold and warm boot attacks. (The recommended mitigation is to completely disable the SDP mode by programming a one-time programmable eFUSE. Customers can contact NXP for additional information.)
CVSS Information
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N
Vulnerability Type
N/A
Vulnerability Title
NXP Semiconductors i.MX SoC 安全漏洞
Vulnerability Description
NXP Semiconductors i.MX SoC是荷兰恩智浦半导体(NXP Semiconductors)公司的适用于多媒体和显示应用的多核解决方案,具有可扩展、安全可靠的高性能和低功耗功能。 NXP Semiconductors i.MX SoC 存在安全漏洞,该漏洞源于其在配置为Serial Download Protocol(SDP)模式时,允许攻击者通过SDP端口获取敏感信息。以下版本受到影响: i.MX RT 1010、i.MX RT 1015、i.MX RT 1020、i.MX RT 1
CVSS Information
N/A
Vulnerability Type
N/A