PT-2020-13559 · Gigadevice · Gd32F103

Published

2020-08-31

Updated

2020-09-03

CVE-2020-13472

CVSS v2.0

2.1

Low

Vector

AV:L/AC:L/Au:N/C:N/I:P/A:N

Name of the Vulnerable Software and Affected Versions Gigadevice GD32F103 devices (affected versions not specified)

Description The issue concerns the flash memory readout protection in Gigadevice GD32F103 devices, which can be exploited by physical attackers to extract firmware. This is achieved by utilizing the DMA module via the debug interface.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Exposure of Resource to Wrong Sphere

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-668

Related Identifiers

CVE-2020-13472

Affected Products

Gd32F103

PT-2020-13559 · Gigadevice · Gd32F103

CVE-2020-13472

Weakness Enumeration

Related Identifiers

Affected Products

References · 2