| |
Podatność CVE-2024-38433
Publikacja: 2024-07-11
| Opis: |
Nuvoton - CWE-305: Authentication Bypass by Primary Weakness
An attacker with write access to the SPI-Flash on an NPCM7xx BMC subsystem that uses the Nuvoton BootBlock
reference code can modify the u-boot image header on flash parsed by the BootBlock which could lead to arbitrary code
execution. |
Typ:
CWE-305 (Authentication Bypass by Primary Weakness)
Referencje: |
https://www.gov.il/en/Departments/faq/cve_advisories
|
|
|
Copyright 2024, cxsecurity.com
|
|
|
Polish
English