Vulnerabilities > CVE-2020-13470 - Exposure of Resource to Wrong Sphere vulnerability in Gigadevice Gd32F103 Firmware and Gd32F130 Firmware

CVSS 2.1 - LOW

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

PARTIAL

Availability impact

NONE

local

low complexity

gigadevice

CWE-668

NVD

Published: 2020-08-31

Updated: 2020-09-03

Summary

Gigadevice GD32F103 and GD32F130 devices allow physical attackers to extract data via the probing of easily accessible bonding wires and de-obfuscation of the observed data.

Vulnerable Configurations

Part	Description	Count
OS	Gigadevice Gigadevice Gd32F103 Firmware - Gigadevice Gd32F130 Firmware -	2
Hardware	Gigadevice Gigadevice Gd32F103 - Gigadevice Gd32F130 -	2

Common Weakness Enumeration (CWE)

CWE-668 - Exposure of Resource to Wrong Sphere

References

https://www.usenix.org/system/files/woot20-paper-obermaier.pdf