Description
Incorrect check of function return value in Caliptra Core Runtime Firmware (ActivateFirmwareCmd::activate_fw modules) allows bypass of Caliptra Core's verification of the MCU FW during a hitless update. This issue affects Core Runtime Firmware: from 2.0.0 through 2.0.1, 2.1.0.
CVSS breakdown
CVSS 4.0
Attack Vector
Adjacent
Attack Complexity
Low
Attack Requirements
Present
Privileges Required
High
User Interaction
None
Confidentiality (Vulnerable System)
None
Integrity (Vulnerable System)
High
Availability (Vulnerable System)
High
Confidentiality (Subsequent System)
High
Integrity (Subsequent System)
High
Availability (Subsequent System)
High
Affected products
- Caliptra / Core Runtime Firmware2.0.0 – 2.0.1
- Caliptra / Core Runtime Firmware2.1.0 – 2.1.0
- Caliptra / Core Runtime Firmware2.0.2 – 2.0.2
- Caliptra / Core Runtime Firmware2.1.1 – 2.1.1