CVE-2022-0553 in zephyrproject-rtos Zephyrinfo

Summary

There is no check to see if slot 0 is being uploaded from the device to the host. When using encrypted images this means the unencrypted firmware can be retrieved easily.

Responsible

Zephyr Project

Reservation

02/09/2022

Disclosure

01/11/2023

Entries

VulDB provides additional information and datapoints for this CVE:

ID	Vulnerability	CWE	Exp	Cou	CVE
217962	zephyrproject-rtos Zephyr Slot 0 information disclosure	200	Not defined	Not defined	CVE-2022-0553

Description

CPE

CWE

CVSS

Exploits

History

Diff

Relate

Threat Intelligence

API JSON

API XML

API CSV

◂ PreviousOverviewNext ▸

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!