VYPR

SmartBond DA14691

by Renesas

CVEs (2)

  • CVE-2024-25077CriJul 10, 2024
    risk 0.64cvss 9.8epss 0.00

    An issue was discovered on Renesas SmartBond DA14691, DA14695, DA14697, and DA14699 devices. The Nonce used for on-the-fly decryption of flash images is stored in an unsigned header, allowing its value to be modified without invalidating the signature used for secureboot image…

  • CVE-2024-25076MedJul 10, 2024
    risk 0.44cvss 6.8epss 0.00

    An issue was discovered on Renesas SmartBond DA14691, DA14695, DA14697, and DA14699 devices. The bootrom function responsible for validating the Flash Product Header directly uses a user-controllable size value (Length of Flash Config Section) to control a read from the QSPI…