What is CVE-2022-27813?

CVE-2022-27813 is a vulnerability found in the Motorola MTM5000 series firmwares that lack properly configured memory protection between the OMAP-L138 ARM and DSP cores.

How does CVE-2022-27813 affect Motorola MTM5500 Firmware?

Motorola MTM5500 Firmware is affected by CVE-2022-27813 as it lacks properly configured memory protection between the OMAP-L138 ARM and DSP cores.

Is Motorola MTM5500 vulnerable to CVE-2022-27813?

No, Motorola MTM5500 is not vulnerable to CVE-2022-27813.

How does CVE-2022-27813 affect Motorola MTM5400 Firmware?

Motorola MTM5400 Firmware is affected by CVE-2022-27813 as it lacks properly configured memory protection between the OMAP-L138 ARM and DSP cores.

Is Motorola MTM5400 vulnerable to CVE-2022-27813?

No, Motorola MTM5400 is not vulnerable to CVE-2022-27813.

What is the severity of CVE-2022-27813?

CVE-2022-27813 has a severity rating of 8.1 (High).

How can I fix CVE-2022-27813?

To fix CVE-2022-27813, it is recommended to apply the necessary firmware update provided by Motorola.

Where can I find more information about CVE-2022-27813?

You can find more information about CVE-2022-27813 at https://tetraburst.com/.

Vulnerability/
CVE-2022-27813

high

8.2

CWE

1260

19/10/2023

3/8/2024

CVE-2022-27813: Unconfigured memory protection modules in Motorola MTM5000

First published: Thu Oct 19 2023(Updated: )

Motorola MTM5000 series firmwares lack properly configured memory protection of pages shared between the OMAP-L138 ARM and DSP cores. The SoC provides two memory protection units, MPU1 and MPU2, to enforce the trust boundary between the two cores. Since both units are left unconfigured by the firmwares, an adversary with control over either core can trivially gain code execution on the other, by overwriting code located in shared RAM or DDR2 memory regions.

Credit: cert@ncsc.nl cert@ncsc.nl

Affected Software	Affected Version	How to fix
Motorola Mtm5500 Firmware
Motorola Mtm5500
Motorola Mtm5400 Firmware
Motorola Mtm5400

Never miss a vulnerability like this again

Reference Links

https://tetraburst.com/

Frequently Asked Questions

What is CVE-2022-27813?
CVE-2022-27813 is a vulnerability found in the Motorola MTM5000 series firmwares that lack properly configured memory protection between the OMAP-L138 ARM and DSP cores.
How does CVE-2022-27813 affect Motorola MTM5500 Firmware?
Motorola MTM5500 Firmware is affected by CVE-2022-27813 as it lacks properly configured memory protection between the OMAP-L138 ARM and DSP cores.
Is Motorola MTM5500 vulnerable to CVE-2022-27813?
No, Motorola MTM5500 is not vulnerable to CVE-2022-27813.
How does CVE-2022-27813 affect Motorola MTM5400 Firmware?
Motorola MTM5400 Firmware is affected by CVE-2022-27813 as it lacks properly configured memory protection between the OMAP-L138 ARM and DSP cores.
Is Motorola MTM5400 vulnerable to CVE-2022-27813?
No, Motorola MTM5400 is not vulnerable to CVE-2022-27813.
What is the severity of CVE-2022-27813?
CVE-2022-27813 has a severity rating of 8.1 (High).
How can I fix CVE-2022-27813?
To fix CVE-2022-27813, it is recommended to apply the necessary firmware update provided by Motorola.
Where can I find more information about CVE-2022-27813?
You can find more information about CVE-2022-27813 at https://tetraburst.com/.

collector/nvd-index
collector/nvd-api
agent/author
agent/type
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/severity
agent/title
agent/last-modified-date
agent/references
agent/weakness
agent/tags
agent/description
agent/first-publish-date
agent/event
vendor/motorola
canonical/motorola mtm5500 firmware
canonical/motorola mtm5500
canonical/motorola mtm5400 firmware
canonical/motorola mtm5400

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.