CVE-2020-13629

Name of the Vulnerable Software and Affected Versions ESP32 (affected versions not specified)

Description The issue concerns bypassing Secure Boot and Flash Encryption on ESP32 chips. It allows extracting decrypted flash data from a fully protected ESP32 chip using chip-level weaknesses, without knowledge of the decryption key, and with a single glitch. There is no information provided about the estimated number of potentially affected devices worldwide or real-world incidents where this issue was exploited.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.