Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An issue was discovered on Espressif ESP32 3.0 (ESP32_rev300 ROM) devices. An EMFI attack on ECO3 provides the attacker with a capability to influence the PC value at the CPU context level, regardless of Secure Boot and Flash Encryption status. By using this capability, the attacker can exploit another behavior in the chip to gain unauthorized access to the ROM download mode. Access to ROM download mode may be further exploited to read the encrypted flash content in cleartext format or execute stub code.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Espressif ESP32 安全漏洞
Vulnerability Description
Espressif ESP32是中国乐鑫信息科技(Espressif)公司的一款单片机微控制器。 Espressif ESP32 3.0 (ESP32_rev300 ROM)存在安全漏洞,该漏洞源于无论安全启动和闪存加密状态如何,对 ECO3 的 EMFI 攻击能够影响 CPU 上下文级别的 PC 值。
CVSS Information
N/A
Vulnerability Type
N/A