cancel
Showing results for 
Search instead for 
Did you mean: 

I have a product going to market that uses a stm32l486xx processor. There are two CVEs that apply to this micro, CVE-2021-29414 and CVE-2020-27212. Can anyone tell me what the first CVE means?

User1655833706281357277
Associate III

Also, apparently CVE-2020-27212 means that you can bypass flash readout protection. Is that a correct reading of that CVE? Note that searching both the ST main site and the community site produce no hits for either CVE, and trying to determine the actual impact of either CVE from the NIST sites is difficult because they provide no detailed information.

1 REPLY 1
KnarfB
Principal III

The first link on the NIST site points you to the article "Security and Trust in Open Source Security Tokens" which describes the attac in great detail.

hth

KnarfB