A weakness was found in Encrypt Only boot mode in Zynq UltraScale+ devices. This could lead to an adversary being able to modify the control fields of the boot image leading to an incorrect secure boot behavior.
References
Link | Resource |
---|---|
https://github.com/inversepath/advisories/blob/master/Security_Advisory-Ref_FSC-HWSEC-VR2019-0001-Xilinx_ZU+-Encrypt_Only_Secure_Boot_bypass.txt | Third Party Advisory |
https://www.xilinx.com/support/answers/72588.html | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: hackerone
Published: 2019-09-03T19:17:35
Updated: 2019-09-03T19:17:35
Reserved: 2019-01-04T00:00:00
Link: CVE-2019-5478
JSON object: View
NVD Information
Status : Analyzed
Published: 2019-09-03T20:15:11.530
Modified: 2020-10-16T14:11:49.883
Link: CVE-2019-5478
JSON object: View
Redhat Information
No data.