CVE-2023-35818
Severity Score
6.8
*CVSS v3.1
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
Track*
*SSVC
Descriptions
An issue was discovered on Espressif ESP32 3.0 (ESP32_rev300 ROM) devices. An EMFI attack on ECO3 provides the attacker with a capability to influence the PC value at the CPU context level, regardless of Secure Boot and Flash Encryption status. By using this capability, the attacker can exploit another behavior in the chip to gain unauthorized access to the ROM download mode. Access to ROM download mode may be further exploited to read the encrypted flash content in cleartext format or execute stub code.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:Track*
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2023-06-17 CVE Reserved
- 2023-07-17 CVE Published
- 2024-08-18 EPSS Updated
- 2024-10-31 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
CAPEC
References (2)
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Espressif Search vendor "Espressif" | Esp32-d0wd-v3 Firmware Search vendor "Espressif" for product "Esp32-d0wd-v3 Firmware" | 3.0 Search vendor "Espressif" for product "Esp32-d0wd-v3 Firmware" and version "3.0" | - |
Affected
| in | Espressif Search vendor "Espressif" | Esp32-d0wd-v3 Search vendor "Espressif" for product "Esp32-d0wd-v3" | - | - |
Safe
|
| Espressif Search vendor "Espressif" | Esp32-d0wd-v3 Firmware Search vendor "Espressif" for product "Esp32-d0wd-v3 Firmware" | 3.1 Search vendor "Espressif" for product "Esp32-d0wd-v3 Firmware" and version "3.1" | - |
Affected
| in | Espressif Search vendor "Espressif" | Esp32-d0wd-v3 Search vendor "Espressif" for product "Esp32-d0wd-v3" | - | - |
Safe
|
| Espressif Search vendor "Espressif" | Esp32-d0wdr2-v3 Firmware Search vendor "Espressif" for product "Esp32-d0wdr2-v3 Firmware" | 3.0 Search vendor "Espressif" for product "Esp32-d0wdr2-v3 Firmware" and version "3.0" | - |
Affected
| in | Espressif Search vendor "Espressif" | Esp32-d0wdr2-v3 Search vendor "Espressif" for product "Esp32-d0wdr2-v3" | - | - |
Safe
|
| Espressif Search vendor "Espressif" | Esp32-d0wdr2-v3 Firmware Search vendor "Espressif" for product "Esp32-d0wdr2-v3 Firmware" | 3.1 Search vendor "Espressif" for product "Esp32-d0wdr2-v3 Firmware" and version "3.1" | - |
Affected
| in | Espressif Search vendor "Espressif" | Esp32-d0wdr2-v3 Search vendor "Espressif" for product "Esp32-d0wdr2-v3" | - | - |
Safe
|
| Espressif Search vendor "Espressif" | Esp32-u4wdh Firmware Search vendor "Espressif" for product "Esp32-u4wdh Firmware" | 3.0 Search vendor "Espressif" for product "Esp32-u4wdh Firmware" and version "3.0" | - |
Affected
| in | Espressif Search vendor "Espressif" | Esp32-u4wdh Search vendor "Espressif" for product "Esp32-u4wdh" | - | - |
Safe
|
| Espressif Search vendor "Espressif" | Esp32-u4wdh Firmware Search vendor "Espressif" for product "Esp32-u4wdh Firmware" | 3.1 Search vendor "Espressif" for product "Esp32-u4wdh Firmware" and version "3.1" | - |
Affected
| in | Espressif Search vendor "Espressif" | Esp32-u4wdh Search vendor "Espressif" for product "Esp32-u4wdh" | - | - |
Safe
|
| Espressif Search vendor "Espressif" | Esp32-pico-v3 Firmware Search vendor "Espressif" for product "Esp32-pico-v3 Firmware" | 3.0 Search vendor "Espressif" for product "Esp32-pico-v3 Firmware" and version "3.0" | - |
Affected
| in | Espressif Search vendor "Espressif" | Esp32-pico-v3 Search vendor "Espressif" for product "Esp32-pico-v3" | - | - |
Safe
|
| Espressif Search vendor "Espressif" | Esp32-pico-v3 Firmware Search vendor "Espressif" for product "Esp32-pico-v3 Firmware" | 3.1 Search vendor "Espressif" for product "Esp32-pico-v3 Firmware" and version "3.1" | - |
Affected
| in | Espressif Search vendor "Espressif" | Esp32-pico-v3 Search vendor "Espressif" for product "Esp32-pico-v3" | - | - |
Safe
|
| Espressif Search vendor "Espressif" | Esp32-pico-v3-02 Firmware Search vendor "Espressif" for product "Esp32-pico-v3-02 Firmware" | 3.0 Search vendor "Espressif" for product "Esp32-pico-v3-02 Firmware" and version "3.0" | - |
Affected
| in | Espressif Search vendor "Espressif" | Esp32-pico-v3-02 Search vendor "Espressif" for product "Esp32-pico-v3-02" | - | - |
Safe
|
| Espressif Search vendor "Espressif" | Esp32-pico-v3-02 Firmware Search vendor "Espressif" for product "Esp32-pico-v3-02 Firmware" | 3.1 Search vendor "Espressif" for product "Esp32-pico-v3-02 Firmware" and version "3.1" | - |
Affected
| in | Espressif Search vendor "Espressif" | Esp32-pico-v3-02 Search vendor "Espressif" for product "Esp32-pico-v3-02" | - | - |
Safe
|
| Espressif Search vendor "Espressif" | Esp32-pico-d4 Firmware Search vendor "Espressif" for product "Esp32-pico-d4 Firmware" | 3.0 Search vendor "Espressif" for product "Esp32-pico-d4 Firmware" and version "3.0" | - |
Affected
| in | Espressif Search vendor "Espressif" | Esp32-pico-d4 Search vendor "Espressif" for product "Esp32-pico-d4" | - | - |
Safe
|
| Espressif Search vendor "Espressif" | Esp32-pico-d4 Firmware Search vendor "Espressif" for product "Esp32-pico-d4 Firmware" | 3.1 Search vendor "Espressif" for product "Esp32-pico-d4 Firmware" and version "3.1" | - |
Affected
| in | Espressif Search vendor "Espressif" | Esp32-pico-d4 Search vendor "Espressif" for product "Esp32-pico-d4" | - | - |
Safe
|
| Espressif Search vendor "Espressif" | Esp32-wroom-32e Firmware Search vendor "Espressif" for product "Esp32-wroom-32e Firmware" | 3.0 Search vendor "Espressif" for product "Esp32-wroom-32e Firmware" and version "3.0" | - |
Affected
| in | Espressif Search vendor "Espressif" | Esp32-wroom-32e Search vendor "Espressif" for product "Esp32-wroom-32e" | - | - |
Safe
|
| Espressif Search vendor "Espressif" | Esp32-wroom-32e Firmware Search vendor "Espressif" for product "Esp32-wroom-32e Firmware" | 3.1 Search vendor "Espressif" for product "Esp32-wroom-32e Firmware" and version "3.1" | - |
Affected
| in | Espressif Search vendor "Espressif" | Esp32-wroom-32e Search vendor "Espressif" for product "Esp32-wroom-32e" | - | - |
Safe
|
| Espressif Search vendor "Espressif" | Esp32-wroom-32ue Firmware Search vendor "Espressif" for product "Esp32-wroom-32ue Firmware" | 3.0 Search vendor "Espressif" for product "Esp32-wroom-32ue Firmware" and version "3.0" | - |
Affected
| in | Espressif Search vendor "Espressif" | Esp32-wroom-32ue Search vendor "Espressif" for product "Esp32-wroom-32ue" | - | - |
Safe
|
| Espressif Search vendor "Espressif" | Esp32-wroom-32ue Firmware Search vendor "Espressif" for product "Esp32-wroom-32ue Firmware" | 3.1 Search vendor "Espressif" for product "Esp32-wroom-32ue Firmware" and version "3.1" | - |
Affected
| in | Espressif Search vendor "Espressif" | Esp32-wroom-32ue Search vendor "Espressif" for product "Esp32-wroom-32ue" | - | - |
Safe
|
| Espressif Search vendor "Espressif" | Esp32-wroom-da Firmware Search vendor "Espressif" for product "Esp32-wroom-da Firmware" | 3.0 Search vendor "Espressif" for product "Esp32-wroom-da Firmware" and version "3.0" | - |
Affected
| in | Espressif Search vendor "Espressif" | Esp32-wroom-da Search vendor "Espressif" for product "Esp32-wroom-da" | - | - |
Safe
|
| Espressif Search vendor "Espressif" | Esp32-wroom-da Firmware Search vendor "Espressif" for product "Esp32-wroom-da Firmware" | 3.1 Search vendor "Espressif" for product "Esp32-wroom-da Firmware" and version "3.1" | - |
Affected
| in | Espressif Search vendor "Espressif" | Esp32-wroom-da Search vendor "Espressif" for product "Esp32-wroom-da" | - | - |
Safe
|
| Espressif Search vendor "Espressif" | Esp32-wrover-e Firmware Search vendor "Espressif" for product "Esp32-wrover-e Firmware" | 3.0 Search vendor "Espressif" for product "Esp32-wrover-e Firmware" and version "3.0" | - |
Affected
| in | Espressif Search vendor "Espressif" | Esp32-wrover-e Search vendor "Espressif" for product "Esp32-wrover-e" | - | - |
Safe
|
| Espressif Search vendor "Espressif" | Esp32-wrover-e Firmware Search vendor "Espressif" for product "Esp32-wrover-e Firmware" | 3.1 Search vendor "Espressif" for product "Esp32-wrover-e Firmware" and version "3.1" | - |
Affected
| in | Espressif Search vendor "Espressif" | Esp32-wrover-e Search vendor "Espressif" for product "Esp32-wrover-e" | - | - |
Safe
|
| Espressif Search vendor "Espressif" | Esp32-wrover-ie Firmware Search vendor "Espressif" for product "Esp32-wrover-ie Firmware" | 3.0 Search vendor "Espressif" for product "Esp32-wrover-ie Firmware" and version "3.0" | - |
Affected
| in | Espressif Search vendor "Espressif" | Esp32-wrover-ie Search vendor "Espressif" for product "Esp32-wrover-ie" | - | - |
Safe
|
| Espressif Search vendor "Espressif" | Esp32-wrover-ie Firmware Search vendor "Espressif" for product "Esp32-wrover-ie Firmware" | 3.1 Search vendor "Espressif" for product "Esp32-wrover-ie Firmware" and version "3.1" | - |
Affected
| in | Espressif Search vendor "Espressif" | Esp32-wrover-ie Search vendor "Espressif" for product "Esp32-wrover-ie" | - | - |
Safe
|
| Espressif Search vendor "Espressif" | Esp32-mini-1 Firmware Search vendor "Espressif" for product "Esp32-mini-1 Firmware" | 3.0 Search vendor "Espressif" for product "Esp32-mini-1 Firmware" and version "3.0" | - |
Affected
| in | Espressif Search vendor "Espressif" | Esp32-mini-1 Search vendor "Espressif" for product "Esp32-mini-1" | - | - |
Safe
|
| Espressif Search vendor "Espressif" | Esp32-mini-1 Firmware Search vendor "Espressif" for product "Esp32-mini-1 Firmware" | 3.1 Search vendor "Espressif" for product "Esp32-mini-1 Firmware" and version "3.1" | - |
Affected
| in | Espressif Search vendor "Espressif" | Esp32-mini-1 Search vendor "Espressif" for product "Esp32-mini-1" | - | - |
Safe
|
| Espressif Search vendor "Espressif" | Esp32-mini-1u Firmware Search vendor "Espressif" for product "Esp32-mini-1u Firmware" | 3.0 Search vendor "Espressif" for product "Esp32-mini-1u Firmware" and version "3.0" | - |
Affected
| in | Espressif Search vendor "Espressif" | Esp32-mini-1u Search vendor "Espressif" for product "Esp32-mini-1u" | - | - |
Safe
|
| Espressif Search vendor "Espressif" | Esp32-mini-1u Firmware Search vendor "Espressif" for product "Esp32-mini-1u Firmware" | 3.1 Search vendor "Espressif" for product "Esp32-mini-1u Firmware" and version "3.1" | - |
Affected
| in | Espressif Search vendor "Espressif" | Esp32-mini-1u Search vendor "Espressif" for product "Esp32-mini-1u" | - | - |
Safe
|
| Espressif Search vendor "Espressif" | Esp32-pico-mini-02 Firmware Search vendor "Espressif" for product "Esp32-pico-mini-02 Firmware" | 3.0 Search vendor "Espressif" for product "Esp32-pico-mini-02 Firmware" and version "3.0" | - |
Affected
| in | Espressif Search vendor "Espressif" | Esp32-pico-mini-02 Search vendor "Espressif" for product "Esp32-pico-mini-02" | - | - |
Safe
|
| Espressif Search vendor "Espressif" | Esp32-pico-mini-02 Firmware Search vendor "Espressif" for product "Esp32-pico-mini-02 Firmware" | 3.1 Search vendor "Espressif" for product "Esp32-pico-mini-02 Firmware" and version "3.1" | - |
Affected
| in | Espressif Search vendor "Espressif" | Esp32-pico-mini-02 Search vendor "Espressif" for product "Esp32-pico-mini-02" | - | - |
Safe
|
| Espressif Search vendor "Espressif" | Esp32-pico-mini-02u Firmware Search vendor "Espressif" for product "Esp32-pico-mini-02u Firmware" | 3.0 Search vendor "Espressif" for product "Esp32-pico-mini-02u Firmware" and version "3.0" | - |
Affected
| in | Espressif Search vendor "Espressif" | Esp32-pico-mini-02u Search vendor "Espressif" for product "Esp32-pico-mini-02u" | - | - |
Safe
|
| Espressif Search vendor "Espressif" | Esp32-pico-mini-02u Firmware Search vendor "Espressif" for product "Esp32-pico-mini-02u Firmware" | 3.1 Search vendor "Espressif" for product "Esp32-pico-mini-02u Firmware" and version "3.1" | - |
Affected
| in | Espressif Search vendor "Espressif" | Esp32-pico-mini-02u Search vendor "Espressif" for product "Esp32-pico-mini-02u" | - | - |
Safe
|
| Espressif Search vendor "Espressif" | Esp32-pico-v3-zero Firmware Search vendor "Espressif" for product "Esp32-pico-v3-zero Firmware" | 3.0 Search vendor "Espressif" for product "Esp32-pico-v3-zero Firmware" and version "3.0" | - |
Affected
| in | Espressif Search vendor "Espressif" | Esp32-pico-v3-zero Search vendor "Espressif" for product "Esp32-pico-v3-zero" | - | - |
Safe
|
| Espressif Search vendor "Espressif" | Esp32-pico-v3-zero Firmware Search vendor "Espressif" for product "Esp32-pico-v3-zero Firmware" | 3.1 Search vendor "Espressif" for product "Esp32-pico-v3-zero Firmware" and version "3.1" | - |
Affected
| in | Espressif Search vendor "Espressif" | Esp32-pico-v3-zero Search vendor "Espressif" for product "Esp32-pico-v3-zero" | - | - |
Safe
|
| Espressif Search vendor "Espressif" | Esp32-devkitc Firmware Search vendor "Espressif" for product "Esp32-devkitc Firmware" | 3.0 Search vendor "Espressif" for product "Esp32-devkitc Firmware" and version "3.0" | - |
Affected
| in | Espressif Search vendor "Espressif" | Esp32-devkitc Search vendor "Espressif" for product "Esp32-devkitc" | - | - |
Safe
|
| Espressif Search vendor "Espressif" | Esp32-devkitc Firmware Search vendor "Espressif" for product "Esp32-devkitc Firmware" | 3.1 Search vendor "Espressif" for product "Esp32-devkitc Firmware" and version "3.1" | - |
Affected
| in | Espressif Search vendor "Espressif" | Esp32-devkitc Search vendor "Espressif" for product "Esp32-devkitc" | - | - |
Safe
|
| Espressif Search vendor "Espressif" | Esp32-devkitm-1 Firmware Search vendor "Espressif" for product "Esp32-devkitm-1 Firmware" | 3.0 Search vendor "Espressif" for product "Esp32-devkitm-1 Firmware" and version "3.0" | - |
Affected
| in | Espressif Search vendor "Espressif" | Esp32-devkitm-1 Search vendor "Espressif" for product "Esp32-devkitm-1" | - | - |
Safe
|
| Espressif Search vendor "Espressif" | Esp32-devkitm-1 Firmware Search vendor "Espressif" for product "Esp32-devkitm-1 Firmware" | 3.1 Search vendor "Espressif" for product "Esp32-devkitm-1 Firmware" and version "3.1" | - |
Affected
| in | Espressif Search vendor "Espressif" | Esp32-devkitm-1 Search vendor "Espressif" for product "Esp32-devkitm-1" | - | - |
Safe
|
| Espressif Search vendor "Espressif" | Esp32-pico-kit Firmware Search vendor "Espressif" for product "Esp32-pico-kit Firmware" | 3.0 Search vendor "Espressif" for product "Esp32-pico-kit Firmware" and version "3.0" | - |
Affected
| in | Espressif Search vendor "Espressif" | Esp32-pico-kit Search vendor "Espressif" for product "Esp32-pico-kit" | - | - |
Safe
|
| Espressif Search vendor "Espressif" | Esp32-pico-kit Firmware Search vendor "Espressif" for product "Esp32-pico-kit Firmware" | 3.1 Search vendor "Espressif" for product "Esp32-pico-kit Firmware" and version "3.1" | - |
Affected
| in | Espressif Search vendor "Espressif" | Esp32-pico-kit Search vendor "Espressif" for product "Esp32-pico-kit" | - | - |
Safe
|
| Espressif Search vendor "Espressif" | Esp32-pico-v3-zero-devkit Firmware Search vendor "Espressif" for product "Esp32-pico-v3-zero-devkit Firmware" | 3.0 Search vendor "Espressif" for product "Esp32-pico-v3-zero-devkit Firmware" and version "3.0" | - |
Affected
| in | Espressif Search vendor "Espressif" | Esp32-pico-v3-zero-devkit Search vendor "Espressif" for product "Esp32-pico-v3-zero-devkit" | - | - |
Safe
|
| Espressif Search vendor "Espressif" | Esp32-pico-v3-zero-devkit Firmware Search vendor "Espressif" for product "Esp32-pico-v3-zero-devkit Firmware" | 3.1 Search vendor "Espressif" for product "Esp32-pico-v3-zero-devkit Firmware" and version "3.1" | - |
Affected
| in | Espressif Search vendor "Espressif" | Esp32-pico-v3-zero-devkit Search vendor "Espressif" for product "Esp32-pico-v3-zero-devkit" | - | - |
Safe
|
| Espressif Search vendor "Espressif" | Esp-eye Firmware Search vendor "Espressif" for product "Esp-eye Firmware" | 3.0 Search vendor "Espressif" for product "Esp-eye Firmware" and version "3.0" | - |
Affected
| in | Espressif Search vendor "Espressif" | Esp-eye Search vendor "Espressif" for product "Esp-eye" | - | - |
Safe
|
| Espressif Search vendor "Espressif" | Esp-eye Firmware Search vendor "Espressif" for product "Esp-eye Firmware" | 3.1 Search vendor "Espressif" for product "Esp-eye Firmware" and version "3.1" | - |
Affected
| in | Espressif Search vendor "Espressif" | Esp-eye Search vendor "Espressif" for product "Esp-eye" | - | - |
Safe
|
| Espressif Search vendor "Espressif" | Esp32-vaquita-dspg Firmware Search vendor "Espressif" for product "Esp32-vaquita-dspg Firmware" | 3.0 Search vendor "Espressif" for product "Esp32-vaquita-dspg Firmware" and version "3.0" | - |
Affected
| in | Espressif Search vendor "Espressif" | Esp32-vaquita-dspg Search vendor "Espressif" for product "Esp32-vaquita-dspg" | - | - |
Safe
|
| Espressif Search vendor "Espressif" | Esp32-vaquita-dspg Firmware Search vendor "Espressif" for product "Esp32-vaquita-dspg Firmware" | 3.1 Search vendor "Espressif" for product "Esp32-vaquita-dspg Firmware" and version "3.1" | - |
Affected
| in | Espressif Search vendor "Espressif" | Esp32-vaquita-dspg Search vendor "Espressif" for product "Esp32-vaquita-dspg" | - | - |
Safe
|