CVE-2020-12789 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	7.5 HIGH	NETWORK	LOW	NONE	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
mitre	CNA	---				---
CVE	ADP	---				---

Base Score

CVSS 3.x

EPSS Score

Percentile: 51%

Vendor	Product	Version
microchip	atsama5d21c-cu_firmware	-
microchip	atsama5d21c-cur_firmware	-
microchip	atsama5d22c-cn_firmware	-
microchip	atsama5d22c-cnr_firmware	-
microchip	atsama5d22c-cu_firmware	-
microchip	atsama5d22c-cur_firmware	-
microchip	atsama5d23c-cn_firmware	-
microchip	atsama5d23c-cnr_firmware	-
microchip	atsama5d23c-cu_firmware	-
microchip	atsama5d23c-cur_firmware	-
microchip	atsama5d24c-cu_firmware	-
microchip	atsama5d24c-cuf_firmware	-
microchip	atsama5d24c-cur_firmware	-
microchip	atsama5d26c-cn_firmware	-
microchip	atsama5d26c-cnr_firmware	-
microchip	atsama5d26c-cu_firmware	-
microchip	atsama5d26c-cur_firmware	-
microchip	atsama5d27c-cn_firmware	-
microchip	atsama5d27c-cnr_firmware	-
microchip	atsama5d27c-cu_firmware	-
microchip	atsama5d27c-cur_firmware	-
microchip	atsama5d28c-cn_firmware	-
microchip	atsama5d28c-cnr_firmware	-
microchip	atsama5d28c-cu_firmware	-
microchip	atsama5d28c-cur_firmware	-
microchip	atsama5d27c-cnvao_firmware	-
microchip	atsama5d27c-cnrvao_firmware	-
microchip	atsama5d225c-d1m-cur_firmware	-
microchip	atsama5d27c-d5m-cu_firmware	-
microchip	atsama5d27c-d5m-cur_firmware	-
microchip	atsama5d27c-d1g-cu_firmware	-
microchip	atsama5d27c-d1g-cur_firmware	-
microchip	atsama5d28c-d1g-cu_firmware	-
microchip	atsama5d28c-d1g-cur_firmware	-
microchip	atsama5d27c-ld1g-cu_firmware	-
microchip	atsama5d27c-ld1g-cur_firmware	-
microchip	atsama5d27c-ld2g-cu_firmware	-
microchip	atsama5d27c-ld2g-cur_firmware	-
microchip	atsama5d28c-ld1g-cu_firmware	-
microchip	atsama5d28c-ld1g-cur_firmware	-
microchip	atsama5d28c-ld2g-cu_firmware	-
microchip	atsama5d28c-ld2g-cur_firmware	-
microchip	atsama5d27-wlsom1_firmware	-
microchip	atsama5d27-som1_firmware	-
microchip	atsama5d31a-cu_firmware	-
microchip	atsama5d31a-cur_firmware	-
microchip	atsama5d31a-cfu_firmware	-
microchip	atsama5d31a-cfur_firmware	-
microchip	atsama5d33a-cu_firmware	-
microchip	atsama5d33a-cur_firmware	-
microchip	atsama5d34a-cu_firmware	-
microchip	atsama5d34a-cur_firmware	-
microchip	atsama5d35a-cu_firmware	-
microchip	atsama5d35a-cur_firmware	-
microchip	atsama5d35a-cn_firmware	-
microchip	atsama5d35a-cnr_firmware	-
microchip	atsama5d36a-cu_firmware	-
microchip	atsama5d36a-cur_firmware	-
microchip	atsama5d36a-cn_firmware	-
microchip	atsama5d36a-cnr_firmware	-
microchip	atsama5d41a-cu_firmware	-
microchip	atsama5d41a-cur_firmware	-
microchip	atsama5d41b-cu_firmware	-
microchip	atsama5d41b-cur_firmware	-
microchip	atsama5d42a-cu_firmware	-
microchip	atsama5d42a-cur_firmware	-
microchip	atsama5d42b-cu_firmware	-
microchip	atsama5d42b-cur_firmware	-
microchip	atsama5d43a-cu_firmware	-
microchip	atsama5d43a-cur_firmware	-
microchip	atsama5d43b-cu_firmware	-
microchip	atsama5d43b-cur_firmware	-
microchip	atsama5d44a-cu_firmware	-
microchip	atsama5d44a-cur_firmware	-
microchip	atsama5d44b-cu_firmware	-
microchip	atsama5d44b-cur_firmware	-

𝑥

= Vulnerable software versions

Common Weakness Enumeration

CWE-798 - Use of Hard-coded Credentials
The software contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to external components, or encryption of internal data.

References

https://labs.f-secure.com/advisories/microchip-atsama5-soc-multiple-vulnerabilities/