Vulnerability Description
STMicroelectronics STM32L4 devices through 2021-03-29 have incorrect physical access control.
CVSS Score
6.1
MEDIUM
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| St | Stm32Cubel4 Firmware | <= 1.17.0 |
| St | Stm32L412C8 | - |
| St | Stm32L412Cb | - |
| St | Stm32L412K8 | - |
| St | Stm32L412Kb | - |
| St | Stm32L412R8 | - |
| St | Stm32L412Rb | - |
| St | Stm32L412T8 | - |
| St | Stm32L412Tb | - |
| St | Stm32L422Cb | - |
| St | Stm32L422Kb | - |
| St | Stm32L422Rb | - |
| St | Stm32L422Tb | - |
| St | Stm32L431Cb | - |
| St | Stm32L431Cc | - |
| St | Stm32L431Kb | - |
| St | Stm32L431Kc | - |
| St | Stm32L431Rb | - |
| St | Stm32L431Rc | - |
| St | Stm32L431Vc | - |
Related Weaknesses (CWE)
References
- https://eprint.iacr.org/2021/640Third Party Advisory
- https://www.aisec.fraunhofer.de/de/das-institut/wissenschaftliche-exzellenz/secuThird Party Advisory
- https://www.sit.fraunhofer.de/en/news-events/downloads-services/cve/Not Applicable
- https://eprint.iacr.org/2021/640Third Party Advisory
- https://www.aisec.fraunhofer.de/de/das-institut/wissenschaftliche-exzellenz/secuThird Party Advisory
- https://www.sit.fraunhofer.de/en/news-events/downloads-services/cve/Not Applicable
FAQ
What is CVE-2021-29414?
CVE-2021-29414 is a vulnerability with a CVSS score of 6.1 (MEDIUM). STMicroelectronics STM32L4 devices through 2021-03-29 have incorrect physical access control.
How severe is CVE-2021-29414?
CVE-2021-29414 has been rated MEDIUM with a CVSS base score of 6.1/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2021-29414?
Check the references section above for vendor advisories and patch information. Affected products include: St Stm32Cubel4 Firmware, St Stm32L412C8, St Stm32L412Cb, St Stm32L412K8, St Stm32L412Kb.