CVE-2023-48010

CRITICAL

STMicroelectronics SPC58 - Missing Protection Mechanism

Title source: llm
STIX 2.1

Description

STMicroelectronics SPC58 is vulnerable to Missing Protection Mechanism for Alternate Hardware Interface. Code running as Supervisor on the SPC58 PowerPC microcontrollers may disable the System Memory Protection Unit and gain unabridged read/write access to protected assets.

References (2)

Core 2

Scores

CVSS v3 9.8
EPSS 0.0044
EPSS Percentile 34.7%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment
Exploitation none
Automatable yes
Technical Impact total

Details

CWE
CWE-522
Status published
Published Dec 05, 2024
Tracked Since Feb 18, 2026