Vulnerability Description
When booting a Zync-7000 SOC device from nand flash memory, the nand driver in the ROM does not validate the inputs when reading in any parameters in the nand’s parameter page. IF a field read in from the parameter page is too large, this causes a buffer overflow that could lead to arbitrary code execution. Physical access and modification of the board assembly on which the Zynq-7000 SoC device mounted is needed to replace the original NAND flash memory with a NAND flash emulation device for this attack to be successful.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Xilinx | Zynq-7000S Firmware | - |
| Xilinx | Zynq-7000S | - |
| Xilinx | Zynq-7000 Firmware | - |
| Xilinx | Zynq-7000 | - |
Related Weaknesses (CWE)
References
- http://www.onfi.org/specificationsNot Applicable
- https://www.xilinx.com/products/silicon-devices/soc/zynq-7000.htmlProductVendor Advisory
- https://www.xilinx.com/support/answers/76201.htmlVendor Advisory
- http://www.onfi.org/specificationsNot Applicable
- https://www.xilinx.com/products/silicon-devices/soc/zynq-7000.htmlProductVendor Advisory
- https://www.xilinx.com/support/answers/76201.htmlVendor Advisory
FAQ
What is CVE-2021-27208?
CVE-2021-27208 is a vulnerability with a CVSS score of 6.8 (MEDIUM). When booting a Zync-7000 SOC device from nand flash memory, the nand driver in the ROM does not validate the inputs when reading in any parameters in the nand’s parameter page. IF a field read in from...
How severe is CVE-2021-27208?
CVE-2021-27208 has been rated MEDIUM with a CVSS base score of 6.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2021-27208?
Check the references section above for vendor advisories and patch information. Affected products include: Xilinx Zynq-7000S Firmware, Xilinx Zynq-7000S, Xilinx Zynq-7000 Firmware, Xilinx Zynq-7000.