CVE-2022-27813

Name of the Vulnerable Software and Affected Versions Motorola MTM5000 series firmwares (affected versions not specified)

Description The issue concerns a lack of properly configured memory protection of pages shared between the OMAP-L138 ARM and DSP cores in Motorola MTM5000 series firmwares. The System on Chip (SoC) has two memory protection units, MPU1 and MPU2, which are intended to enforce the trust boundary between the two cores. However, since both units are left unconfigured by the firmwares, an adversary with control over either core can easily gain code execution on the other by overwriting code in shared RAM or DDR2 memory regions.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.