CVE-2021-3011
4.2 MEDIUMAn electromagnetic-wave side-channel issue was discovered on NXP SmartMX / P5x security microcontrollers and A7x secure authentication mi...
Published: 2021-01-07 · Last updated: 2026-06-17
Severity and scoring
- CVSS
- 4.2 MEDIUM
- Vector
- CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
- CWE
- CWE-670
Affected products
| Vendor | Product |
|---|---|
| ftsafe | 3a081, a7005a, j2a081 |
| 3a081, a7005a, j2a081 | |
| nxp | 3a081, a7005a, j2a081 |
| yubico | 3a081, a7005a, j2a081 |
Description
An electromagnetic-wave side-channel issue was discovered on NXP SmartMX / P5x security microcontrollers and A7x secure authentication microcontrollers, with CryptoLib through v2.9. It allows attackers to extract the ECDSA private key after extensive physical access (and consequently produce a clone). This was demonstrated on the Google Titan Security Key, based on an NXP A7005a chip. Other FIDO U2F security keys are also impacted (Yubico YubiKey Neo and Feitian K9, K13, K21, and K40) as well as several NXP JavaCard smartcards (J3A081, J2A081, J3A041, J3D145_M59, J2D145_M59, J3D120_M60, J3D082_M60, J2D120_M60, J2D082_M60, J3D081_M59, J2D081_M59, J3D081_M61, J2D081_M61, J3D081_M59_DF, J3D081_M61_DF, J3E081_M64, J3E081_M66, J2E081_M64, J3E041_M66, J3E016_M66, J3E016_M64, J3E041_M64, J3E145_M64, J3E120_M65, J3E082_M65, J2E145_M64, J2E120_M65, J2E082_M65, J3E081_M64_DF, J3E081_M66_DF, J3E041_M66_DF, J3E016_M66_DF, J3E041_M64_DF, and J3E016_M64_DF).
Source: NVD
References
- [NVD]https://nvd.nist.gov/vuln/detail/CVE-2021-3011
- [Other]https://ninjalab.io/a-side-journey-to-titan/
- [Exploit reference]https://ninjalab.io/wp-content/uploads/2021/01/a_side_journey_to_titan.pdf
- [Other]https://ninjalab.io/a-side-journey-to-titan/
- [Exploit reference]https://ninjalab.io/wp-content/uploads/2021/01/a_side_journey_to_titan.pdf
Related CVEs
Same vendor
- CVE-2026-12035 — Use after free in Views in Google Chrome on Windows prior to 149.0.7827.115 allowed a remote attacker to potentially exploit heap corrupt... (8.8 HIGH)
- CVE-2026-12034 — Insufficient validation of untrusted input in Linux Toolkit Theming in Google Chrome on Linux prior to 149.0.7827.115 allowed a remote at... (8.3 HIGH)
- CVE-2026-12033 — Out of bounds read in VideoCapture in Google Chrome prior to 149.0.7827.115 allowed a remote attacker who had compromised the GPU process... (5.3 MEDIUM)
- CVE-2026-12032 — Inappropriate implementation in Passwords in Google Chrome on Android prior to 149.0.7827.115 allowed a remote attacker who had compromis... (3.1 LOW)
- CVE-2026-12031 — Inappropriate implementation in Views in Google Chrome on Windows prior to 149.0.7827.115 allowed a remote attacker who had compromised t... (8.3 HIGH)
Same CWE
- CVE-2026-12321 — JIT miscompilation in the JavaScript: WebAssembly component (5.4 MEDIUM)
- CVE-2026-48844 — Roundcube Webmail 1.6.x before 1.6.16 and 1.7.x before 1.7.1 has insecure code evaluation logic in LDAP the autovalues option that could ... (7.5 HIGH)
- CVE-2026-20171 — A vulnerability in the Border Gateway Protocol (BGP) enforce-first-as feature of Cisco Nexus 3000 Series Switches and Cisco Nex... (6.8 MEDIUM)
- CVE-2026-38361 — Multiple unauthenticated denial-of-service (DoS) issues in fohrloop dash-uploader v0.1.0 through v0.7.0a2 (7.5 HIGH)
- CVE-2021-41153 — The evm crate is a pure Rust implementation of Ethereum Virtual Machine (8.7 HIGH)