CVE-2020-8004

HIGH

STM32F1 Firmware - Incorrect Access Control

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2020-8004. PoCs published by wuxx.

AI-analyzed exploit summary This repository contains a functional exploit PoC for CVE-2020-8004, which targets a vulnerability in STM32F1 microcontrollers. The exploit leverages exception handling mechanisms to extract firmware by triggering specific exceptions and reading memory contents via OpenOCD.

Description

STMicroelectronics STM32F1 devices have Incorrect Access Control.

Exploits (1)

nomisec WORKING POC 23 stars

by wuxx · poc

https://github.com/wuxx/CVE-2020-8004

View Code ZIP pw:eip

This repository contains a functional exploit PoC for CVE-2020-8004, which targets a vulnerability in STM32F1 microcontrollers. The exploit leverages exception handling mechanisms to extract firmware by triggering specific exceptions and reading memory contents via OpenOCD.

Classification

Working Poc 95%

Attack Type

Info Leak

Complexity

Moderate

Reliability

Reliable

Target: STM32F1 microcontrollers

No auth needed

Prerequisites: Physical access or debug interface access to the target device · OpenOCD toolchain

MITRE ATT&CK

T1006 - Direct Volume Access T1059 - Command and Scripting Interpreter

devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (1)

Core 1

Core References

Exploit, Third Party Advisory x_refsource_misc

https://blog.zapb.de/stm32f1-exceptional-failure/

Scores

CVSS v3 7.5

EPSS 0.0614

EPSS Percentile 90.9%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Details

Status published

Products (1)

st/stm32f1_firmware

Published Apr 06, 2020

Tracked Since Feb 18, 2026