CVE-2022-23822

Name of the Vulnerable Software and Affected Versions Xilinx Zynq-7000 SoC (affected versions not specified)

Description The issue concerns a physical attack where an attacker can potentially exploit the First Stage Boot Loader (FSBL) by bypassing authentication and loading a malicious image onto the device. This could allow the attacker to perform additional attacks, such as using the device as a decryption oracle.

Recommendations For all affected versions, apply the anticipated 2022.1 patch to resolve the issue. As a temporary workaround, consider restricting physical access to the device to minimize the risk of exploitation.