Nordicsemi: >> Nrf52840 Firmware Security Vulnerabilities
Nordic Semiconductor nRF52840 devices through 2020-10-19 have improper protection against physical side channels. The flash read-out protection (APPROTECT) can be bypassed by injecting a fault during the boot phase.
CVSS Score
5.7
EPSS Score
0.001
Published
2021-05-21
The elliptic curve cryptography (ECC) hardware accelerator, part of the ARMĀ® TrustZoneĀ® CryptoCell 310, contained in the NordicSemiconductor nRF52840 through 2021-03-29 has a non-constant time ECDSA implemenation. This allows an adversary to recover the private ECC key used during an ECDSA operation.
CVSS Score
5.5
EPSS Score
0.001
Published
2021-05-21