CVE-2017-18347

Incorrect access control in RDP Level 1 on STMicroelectronics STM32F0 series devices allows physically present attackers to extract the device's protected firmware via a special sequence of Serial Wire Debug (SWD) commands because there is a race condition between full initialization of the SWD interface and the setup of flash protection.
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:st:stm32f071rb_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:st:stm32f071rb:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:o:st:stm32f071v8_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:st:stm32f071v8:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND
cpe:2.3:o:st:stm32f071vb_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:st:stm32f071vb:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND
cpe:2.3:o:st:stm32f072c8_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:st:stm32f072c8:-:*:*:*:*:*:*:*

Configuration 5 (hide)

AND
cpe:2.3:o:st:stm32f072cb_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:st:stm32f072cb:-:*:*:*:*:*:*:*

Configuration 6 (hide)

AND
cpe:2.3:o:st:stm32f072r8_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:st:stm32f072r8:-:*:*:*:*:*:*:*

Configuration 7 (hide)

AND
cpe:2.3:o:st:stm32f072rb_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:st:stm32f072rb:-:*:*:*:*:*:*:*

Configuration 8 (hide)

AND
cpe:2.3:o:st:stm32f072v8_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:st:stm32f072v8:-:*:*:*:*:*:*:*

Configuration 9 (hide)

AND
cpe:2.3:o:st:stm32f072vb_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:st:stm32f072vb:-:*:*:*:*:*:*:*

Configuration 10 (hide)

AND
cpe:2.3:o:st:stm32f078cb_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:st:stm32f078cb:-:*:*:*:*:*:*:*

Configuration 11 (hide)

AND
cpe:2.3:o:st:stm32f078rb_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:st:stm32f078rb:-:*:*:*:*:*:*:*

Configuration 12 (hide)

AND
cpe:2.3:o:st:stm32f078vb_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:st:stm32f078vb:-:*:*:*:*:*:*:*

Configuration 13 (hide)

AND
cpe:2.3:o:st:stm32f091cb_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:st:stm32f091cb:-:*:*:*:*:*:*:*

Configuration 14 (hide)

AND
cpe:2.3:o:st:stm32f091cc_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:st:stm32f091cc:-:*:*:*:*:*:*:*

Configuration 15 (hide)

AND
cpe:2.3:o:st:stm32f091rb_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:st:stm32f091rb:-:*:*:*:*:*:*:*

Configuration 16 (hide)

AND
cpe:2.3:o:st:stm32f091rc_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:st:stm32f091rc:-:*:*:*:*:*:*:*

Configuration 17 (hide)

AND
cpe:2.3:o:st:stm32f091vb_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:st:stm32f091vb:-:*:*:*:*:*:*:*

Configuration 18 (hide)

AND
cpe:2.3:o:st:stm32f091vc_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:st:stm32f091vc:-:*:*:*:*:*:*:*

Configuration 19 (hide)

AND
cpe:2.3:o:st:stm32f098cc_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:st:stm32f098cc:-:*:*:*:*:*:*:*

Configuration 20 (hide)

AND
cpe:2.3:o:st:stm32f098rc_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:st:stm32f098rc:-:*:*:*:*:*:*:*

Configuration 21 (hide)

AND
cpe:2.3:o:st:stm32f098vc_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:st:stm32f098vc:-:*:*:*:*:*:*:*

Configuration 22 (hide)

AND
cpe:2.3:o:st:stm32f070c6_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:st:stm32f070c6:-:*:*:*:*:*:*:*

Configuration 23 (hide)

AND
cpe:2.3:o:st:stm32f070cb_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:st:stm32f070cb:-:*:*:*:*:*:*:*

Configuration 24 (hide)

AND
cpe:2.3:o:st:stm32f070f6_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:st:stm32f070f6:-:*:*:*:*:*:*:*

Configuration 25 (hide)

AND
cpe:2.3:o:st:stm32f070rb_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:st:stm32f070rb:-:*:*:*:*:*:*:*

Configuration 26 (hide)

AND
cpe:2.3:o:st:stm32f071c8_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:st:stm32f071c8:-:*:*:*:*:*:*:*

Configuration 27 (hide)

AND
cpe:2.3:o:st:stm32f071cb_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:st:stm32f071cb:-:*:*:*:*:*:*:*

Configuration 28 (hide)

AND
cpe:2.3:o:st:stm32f051t8_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:st:stm32f051t8:-:*:*:*:*:*:*:*

Configuration 29 (hide)

AND
cpe:2.3:o:st:stm32f058c8_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:st:stm32f058c8:-:*:*:*:*:*:*:*

Configuration 30 (hide)

AND
cpe:2.3:o:st:stm32f058r8_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:st:stm32f058r8:-:*:*:*:*:*:*:*

Configuration 31 (hide)

AND
cpe:2.3:o:st:stm32f058t8_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:st:stm32f058t8:-:*:*:*:*:*:*:*

Configuration 32 (hide)

AND
cpe:2.3:o:st:stm32f070c6_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:st:stm32f070c6:-:*:*:*:*:*:*:*

Configuration 33 (hide)

AND
cpe:2.3:o:st:stm32f051k4_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:st:stm32f051k4:-:*:*:*:*:*:*:*

Configuration 34 (hide)

AND
cpe:2.3:o:st:stm32f051k6_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:st:stm32f051k6:-:*:*:*:*:*:*:*

Configuration 35 (hide)

AND
cpe:2.3:o:st:stm32f051k8_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:st:stm32f051k8:-:*:*:*:*:*:*:*

Configuration 36 (hide)

AND
cpe:2.3:o:st:stm32f051r4_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:st:stm32f051r4:-:*:*:*:*:*:*:*

Configuration 37 (hide)

AND
cpe:2.3:o:st:stm32f051r6_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:st:stm32f051r6:-:*:*:*:*:*:*:*

Configuration 38 (hide)

AND
cpe:2.3:o:st:stm32f051r8_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:st:stm32f051r8:-:*:*:*:*:*:*:*

Configuration 39 (hide)

AND
cpe:2.3:o:st:stm32f042t6_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:st:stm32f042t6:-:*:*:*:*:*:*:*

Configuration 40 (hide)

AND
cpe:2.3:o:st:stm32f048c6_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:st:stm32f048c6:-:*:*:*:*:*:*:*

Configuration 41 (hide)

AND
cpe:2.3:o:st:stm32f048g6_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:st:stm32f048g6:-:*:*:*:*:*:*:*

Configuration 42 (hide)

AND
cpe:2.3:o:st:stm32f048t6_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:st:stm32f048t6:-:*:*:*:*:*:*:*

Configuration 43 (hide)

AND
cpe:2.3:o:st:stm32f051c4_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:st:stm32f051c4:-:*:*:*:*:*:*:*

Configuration 44 (hide)

AND
cpe:2.3:o:st:stm32f051c6_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:st:stm32f051c6:-:*:*:*:*:*:*:*

Configuration 45 (hide)

AND
cpe:2.3:o:st:stm32f051c8_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:st:stm32f051c8:-:*:*:*:*:*:*:*

Configuration 46 (hide)

AND
cpe:2.3:o:st:stm32f042f4_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:st:stm32f042f4:-:*:*:*:*:*:*:*

Configuration 47 (hide)

AND
cpe:2.3:o:st:stm32f042f6_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:st:stm32f042f6:-:*:*:*:*:*:*:*

Configuration 48 (hide)

AND
cpe:2.3:o:st:stm32f042g4_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:st:stm32f042g4:-:*:*:*:*:*:*:*

Configuration 49 (hide)

AND
cpe:2.3:o:st:stm32f042g6_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:st:stm32f042g6:-:*:*:*:*:*:*:*

Configuration 50 (hide)

AND
cpe:2.3:o:st:stm32f042k4_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:st:stm32f042k4:-:*:*:*:*:*:*:*

Configuration 51 (hide)

AND
cpe:2.3:o:st:stm32f042k6_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:st:stm32f042k6:-:*:*:*:*:*:*:*

Configuration 52 (hide)

AND
cpe:2.3:o:st:stm32f038c6_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:st:stm32f038c6:-:*:*:*:*:*:*:*

Configuration 53 (hide)

AND
cpe:2.3:o:st:stm32f038e6_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:st:stm32f038e6:-:*:*:*:*:*:*:*

Configuration 54 (hide)

AND
cpe:2.3:o:st:stm32f038f6_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:st:stm32f038f6:-:*:*:*:*:*:*:*

Configuration 55 (hide)

AND
cpe:2.3:o:st:stm32f038g6_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:st:stm32f038g6:-:*:*:*:*:*:*:*

Configuration 56 (hide)

AND
cpe:2.3:o:st:stm32f038k6_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:st:stm32f038k6:-:*:*:*:*:*:*:*

Configuration 57 (hide)

AND
cpe:2.3:o:st:stm32f042c4_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:st:stm32f042c4:-:*:*:*:*:*:*:*

Configuration 58 (hide)

AND
cpe:2.3:o:st:stm32f042c6_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:st:stm32f042c6:-:*:*:*:*:*:*:*

Configuration 59 (hide)

AND
cpe:2.3:o:st:stm32f031e6_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:st:stm32f031e6:-:*:*:*:*:*:*:*

Configuration 60 (hide)

AND
cpe:2.3:o:st:stm32f031f4_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:st:stm32f031f4:-:*:*:*:*:*:*:*

Configuration 61 (hide)

AND
cpe:2.3:o:st:stm32f031f6_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:st:stm32f031f6:-:*:*:*:*:*:*:*

Configuration 62 (hide)

AND
cpe:2.3:o:st:stm32f031g4_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:st:stm32f031g4:-:*:*:*:*:*:*:*

Configuration 63 (hide)

AND
cpe:2.3:o:st:stm32f031g6_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:st:stm32f031g6:-:*:*:*:*:*:*:*

Configuration 64 (hide)

AND
cpe:2.3:o:st:stm32f031k4_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:st:stm32f031k4:-:*:*:*:*:*:*:*

Configuration 65 (hide)

AND
cpe:2.3:o:st:stm32f030f4_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:st:stm32f030f4:-:*:*:*:*:*:*:*

Configuration 66 (hide)

AND
cpe:2.3:o:st:stm32f030k6_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:st:stm32f030k6:-:*:*:*:*:*:*:*

Configuration 67 (hide)

AND
cpe:2.3:o:st:stm32f030r8_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:st:stm32f030r8:-:*:*:*:*:*:*:*

Configuration 68 (hide)

AND
cpe:2.3:o:st:stm32f030rc_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:st:stm32f030rc:-:*:*:*:*:*:*:*

Configuration 69 (hide)

AND
cpe:2.3:o:st:stm32f031c4_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:st:stm32f031c4:-:*:*:*:*:*:*:*

Configuration 70 (hide)

AND
cpe:2.3:o:st:stm32f031c6_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:st:stm32f031c6:-:*:*:*:*:*:*:*

Configuration 71 (hide)

AND
cpe:2.3:o:st:stm32f030c6_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:st:stm32f030c6:-:*:*:*:*:*:*:*

Configuration 72 (hide)

AND
cpe:2.3:o:st:stm32f030c8_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:st:stm32f030c8:-:*:*:*:*:*:*:*

Configuration 73 (hide)

AND
cpe:2.3:o:st:stm32f030cc_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:st:stm32f030cc:-:*:*:*:*:*:*:*

History

21 Nov 2024, 03:19

Type Values Removed Values Added
References () https://community.st.com/s/question/0D50X00009Xke7aSAB/readout-protection-cracked-on-stm32 - Vendor Advisory () https://community.st.com/s/question/0D50X00009Xke7aSAB/readout-protection-cracked-on-stm32 - Vendor Advisory
References () https://www.aisec.fraunhofer.de/en/FirmwareProtection.html - Exploit, Third Party Advisory () https://www.aisec.fraunhofer.de/en/FirmwareProtection.html - Exploit, Third Party Advisory
References () https://www.usenix.org/conference/woot17/workshop-program/presentation/obermaier - Exploit, Third Party Advisory () https://www.usenix.org/conference/woot17/workshop-program/presentation/obermaier - Exploit, Third Party Advisory

Information

Published : 2018-09-12 15:29

Updated : 2024-11-21 03:19


NVD link : CVE-2017-18347

Mitre link : CVE-2017-18347

CVE.ORG link : CVE-2017-18347


JSON object : View

Products Affected

st

  • stm32f051c6_firmware
  • stm32f042f4
  • stm32f030r8
  • stm32f031f4_firmware
  • stm32f071c8_firmware
  • stm32f038c6
  • stm32f072v8_firmware
  • stm32f031g6_firmware
  • stm32f078rb
  • stm32f070rb
  • stm32f048t6
  • stm32f042k6
  • stm32f091vc
  • stm32f058t8
  • stm32f048c6
  • stm32f051k6_firmware
  • stm32f051r6
  • stm32f051c4
  • stm32f030r8_firmware
  • stm32f091vb_firmware
  • stm32f091vc_firmware
  • stm32f038k6
  • stm32f051k4
  • stm32f051t8
  • stm32f051r8
  • stm32f070rb_firmware
  • stm32f051c6
  • stm32f038f6_firmware
  • stm32f031f6
  • stm32f058r8
  • stm32f042c6_firmware
  • stm32f051r8_firmware
  • stm32f072r8_firmware
  • stm32f091vb
  • stm32f098rc
  • stm32f038f6
  • stm32f071vb_firmware
  • stm32f042c4
  • stm32f042c6
  • stm32f091rc
  • stm32f038e6_firmware
  • stm32f042k4_firmware
  • stm32f031f4
  • stm32f071c8
  • stm32f058c8_firmware
  • stm32f072r8
  • stm32f042f4_firmware
  • stm32f098cc
  • stm32f030k6_firmware
  • stm32f030c6
  • stm32f058r8_firmware
  • stm32f078cb
  • stm32f070f6
  • stm32f030f4
  • stm32f030cc_firmware
  • stm32f072c8
  • stm32f051r4
  • stm32f072vb
  • stm32f098cc_firmware
  • stm32f091rb
  • stm32f091cc_firmware
  • stm32f072v8
  • stm32f072vb_firmware
  • stm32f051r4_firmware
  • stm32f051k8
  • stm32f031k4_firmware
  • stm32f030cc
  • stm32f031c6_firmware
  • stm32f051c8_firmware
  • stm32f071v8
  • stm32f038e6
  • stm32f048c6_firmware
  • stm32f031k4
  • stm32f072c8_firmware
  • stm32f070c6
  • stm32f071vb
  • stm32f072rb
  • stm32f098vc
  • stm32f042g4_firmware
  • stm32f048g6
  • stm32f072rb_firmware
  • stm32f091rb_firmware
  • stm32f042c4_firmware
  • stm32f030f4_firmware
  • stm32f051c8
  • stm32f071cb_firmware
  • stm32f072cb
  • stm32f031g4_firmware
  • stm32f078vb_firmware
  • stm32f031g6
  • stm32f042k6_firmware
  • stm32f038g6
  • stm32f031c6
  • stm32f030rc
  • stm32f030c8
  • stm32f048t6_firmware
  • stm32f031e6_firmware
  • stm32f038k6_firmware
  • stm32f042f6_firmware
  • stm32f042g4
  • stm32f031c4_firmware
  • stm32f070cb
  • stm32f051k6
  • stm32f070c6_firmware
  • stm32f078cb_firmware
  • stm32f078vb
  • stm32f030c8_firmware
  • stm32f098vc_firmware
  • stm32f070f6_firmware
  • stm32f030c6_firmware
  • stm32f031c4
  • stm32f078rb_firmware
  • stm32f070cb_firmware
  • stm32f058c8
  • stm32f051k4_firmware
  • stm32f042t6
  • stm32f042t6_firmware
  • stm32f071v8_firmware
  • stm32f042f6
  • stm32f042g6
  • stm32f051t8_firmware
  • stm32f042k4
  • stm32f058t8_firmware
  • stm32f091cb_firmware
  • stm32f071rb_firmware
  • stm32f038g6_firmware
  • stm32f030rc_firmware
  • stm32f031g4
  • stm32f098rc_firmware
  • stm32f051k8_firmware
  • stm32f071cb
  • stm32f042g6_firmware
  • stm32f031f6_firmware
  • stm32f072cb_firmware
  • stm32f038c6_firmware
  • stm32f091rc_firmware
  • stm32f031e6
  • stm32f071rb
  • stm32f051r6_firmware
  • stm32f048g6_firmware
  • stm32f051c4_firmware
  • stm32f091cc
  • stm32f030k6
  • stm32f091cb
CWE
CWE-362

Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')