Medium severity4.6NVD Advisory· Published Sep 12, 2018· Updated Jun 17, 2026
CVE-2017-18347
CVE-2017-18347
Description
Incorrect access control in RDP Level 1 on STMicroelectronics STM32F0 series devices allows physically present attackers to extract the device's protected firmware via a special sequence of Serial Wire Debug (SWD) commands because there is a race condition between full initialization of the SWD interface and the setup of flash protection.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3Patches
Vulnerability mechanics
References
3- www.aisec.fraunhofer.de/en/FirmwareProtection.htmlnvdExploitThird Party Advisory
- www.usenix.org/conference/woot17/workshop-program/presentation/obermaiernvdExploitThird Party Advisory
- community.st.com/s/question/0D50X00009Xke7aSAB/readout-protection-cracked-on-stm32nvdVendor Advisory
News mentions
0No linked articles in our index yet.