1. Home
  2. CVE Database
  3. CVE-2023-35818
MEDIUM · 6.8

CVE-2023-35818

An issue was discovered on Espressif ESP32 3.0 (ESP32_rev300 ROM) devices. An EMFI attack on ECO3 provides the attacker with a capability to influence the PC value at the CPU context level, regardless...

Vulnerability Description

An issue was discovered on Espressif ESP32 3.0 (ESP32_rev300 ROM) devices. An EMFI attack on ECO3 provides the attacker with a capability to influence the PC value at the CPU context level, regardless of Secure Boot and Flash Encryption status. By using this capability, the attacker can exploit another behavior in the chip to gain unauthorized access to the ROM download mode. Access to ROM download mode may be further exploited to read the encrypted flash content in cleartext format or execute stub code.

CVSS Score

6.8

MEDIUM

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Attack Vector
PHYSICAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality
HIGH
Integrity
HIGH
Availability
HIGH

Affected Products

VendorProductVersions
EspressifEsp32-D0Wd-V3 Firmware3.0
EspressifEsp32-D0Wd-V3-
EspressifEsp32-D0Wdr2-V3 Firmware3.0
EspressifEsp32-D0Wdr2-V3-
EspressifEsp32-U4Wdh Firmware3.0
EspressifEsp32-U4Wdh-
EspressifEsp32-Pico-V3 Firmware3.0
EspressifEsp32-Pico-V3-
EspressifEsp32-Pico-V3-02 Firmware3.0
EspressifEsp32-Pico-V3-02-
EspressifEsp32-Pico-D4 Firmware3.0
EspressifEsp32-Pico-D4-
EspressifEsp32-Wroom-32E Firmware3.0
EspressifEsp32-Wroom-32E-
EspressifEsp32-Wroom-32Ue Firmware3.0
EspressifEsp32-Wroom-32Ue-
EspressifEsp32-Wroom-Da Firmware3.0
EspressifEsp32-Wroom-Da-
EspressifEsp32-Wrover-E Firmware3.0
EspressifEsp32-Wrover-E-

References

FAQ

What is CVE-2023-35818?

CVE-2023-35818 is a vulnerability with a CVSS score of 6.8 (MEDIUM). An issue was discovered on Espressif ESP32 3.0 (ESP32_rev300 ROM) devices. An EMFI attack on ECO3 provides the attacker with a capability to influence the PC value at the CPU context level, regardless...

How severe is CVE-2023-35818?

CVE-2023-35818 has been rated MEDIUM with a CVSS base score of 6.8/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2023-35818?

Check the references section above for vendor advisories and patch information. Affected products include: Espressif Esp32-D0Wd-V3 Firmware, Espressif Esp32-D0Wd-V3, Espressif Esp32-D0Wdr2-V3 Firmware, Espressif Esp32-D0Wdr2-V3, Espressif Esp32-U4Wdh Firmware.