漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
Semtech LR11xx Secure Boot Bypass
Vulnerability Description
The Semtech LR11xx LoRa transceivers implement secure boot functionality using digital signatures to authenticate firmware. However, the implementation uses a non-standard cryptographic hashing algorithm that is vulnerable to second preimage attacks. An attacker with physical access to the device can exploit this weakness to generate a malicious firmware image with a hash collision, bypassing the secure boot verification mechanism and installing arbitrary unauthorized firmware on the device.
CVSS Information
N/A
Vulnerability Type
使用已被攻破或存在风险的密码学算法
Vulnerability Title
Semtech LR11xx LoRa 安全漏洞
Vulnerability Description
Semtech LR11xx LoRa是美国Semtech公司的一系列低功耗无线通信芯片。 Semtech LR11xx LoRa存在安全漏洞,该漏洞源于使用易受二次原像攻击的非标准加密哈希算法,可能导致攻击者绕过安全启动验证机制。
CVSS Information
N/A
Vulnerability Type
N/A