Nuvoton: >> Npcm730r Security Vulnerabilities
Nuvoton - CWE-305: Authentication Bypass by Primary Weakness
An attacker with write access to the SPI-Flash on an NPCM7xx BMC subsystem that uses the Nuvoton BootBlock
reference code can modify the u-boot image header on flash parsed by the BootBlock which could lead to arbitrary code
execution.
CVSS Score
6.7
EPSS Score
0.0
Published
2024-07-11