CVE-2022-25332: SK_LOAD timing side channel during AES module decryption in Texas Instruments OMAP L138
First published: Thu Oct 19 2023(Updated: )
The AES implementation in the Texas Instruments OMAP L138 (secure variants), present in mask ROM, suffers from a timing side channel which can be exploited by an adversary with non-secure supervisor privileges by managing cache contents and collecting timing information for different ciphertext inputs. Using this side channel, the SK_LOAD secure kernel routine can be used to recover the Customer Encryption Key (CEK).
Credit: cert@ncsc.nl cert@ncsc.nl
| Affected Software | Affected Version | How to fix |
|---|---|---|
| All of | ||
| Ti Omap L138 Firmware | ||
| Ti Omap L138 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this vulnerability?
The vulnerability ID for this vulnerability is CVE-2022-25332.
What is the severity of CVE-2022-25332?
The severity of CVE-2022-25332 is medium with a severity value of 4.4.
What software is affected by CVE-2022-25332?
The affected software is Ti Omap-l138 Firmware.
How can an adversary exploit CVE-2022-25332?
An adversary with non-secure supervisor privileges can exploit CVE-2022-25332 by managing cache contents and collecting timing information for different ciphertext inputs.
Is Ti Omap-l138 vulnerable to CVE-2022-25332?
No, Ti Omap-l138 is not vulnerable to CVE-2022-25332.
- collector/nvd-index
- agent/weakness
- agent/type
- agent/author
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/references
- agent/softwarecombine
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/title
- agent/last-modified-date
- agent/tags
- agent/first-publish-date
- agent/event
- vendor/ti
- canonical/ti omap l138 firmware
- canonical/ti omap l138