Xilinx Zynq-7000

Submit a proposal Propose CVE/GCVE/GHSA reference

Approved changes feed: RSS · Atom

cpe:2.3:h:xilinx:zynq-7000:-:*:*:*:*:*:*:*

part: h version: - update: *

VendorXilinx (052b85b7-5ee0-58fa-a00f-77291dc19cec)
ProductZynq 7000 (d96e2090-7939-56e0-b7f3-e477be741890)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from NVD CPE 2.0 feed

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2022-23822 not_vulnerable 2026-06-08 05:40:58.923025 Details available
In this physical attack, an attacker may potentially exploit the Zynq-7000 SoC First Stage Boot Loader (FSBL) by bypassing authentication and loading a malicious image onto the device. This in turn may further allow the attacker to perform additional attacks such as such as using the device as a decryption oracle. An anticipated mitigation via a 2022.1 patch will resolve the issue.
Published: 2022-04-27T16:06:05.276Z
Updated: 2024-09-16T22:25:01.331Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2021-27208 not_vulnerable 2026-06-08 05:30:46.076508 Details available
When booting a Zync-7000 SOC device from nand flash memory, the nand driver in the ROM does not validate the inputs when reading in any parameters in the nand’s parameter page. IF a field read in from the parameter page is too large, this causes a buffer overflow that could lead to arbitrary code execution. Physical access and modification of the board assembly on which the Zynq-7000 SoC device mounted is needed to replace the original NAND flash memory with a NAND flash emulation device for this attack to be successful.
Published: 2021-03-15T12:27:26.000Z
Updated: 2024-08-03T20:40:47.492Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.