CVE-2025-9709

Description

On-Chip Debug and Test Interface With Improper Access Control and Improper Protection against Electromagnetic Fault Injection (EM-FI) in Nordic Semiconductor nRF52810 allow attacker to perform EM Fault Injection and bypass APPROTECT at runtime, requiring the least amount of modification to the hardware system possible.

Weakness Type (CWE)

CWE-1191 CWE-1191

CWE-1319 CWE-1319

References

Other References

https://nvd.nist.gov/vuln/detail/CVE-2020-27211 https://raelize.com/upload/research/2022/No_Hat_2022_-_Glitching_devices_for_code_execution_v1.1.pdf https://raelize.com/upload/research/2025/Dartmouth_202505_False-Injections-Tales-of-Physics-Misconceptions-and-Weird-Machines_v1.1.pdf https://www.toreon.com/cve-2025-9709-major-vulnerability-in-common-chip/

Frequently Asked Questions

What is CVE-2025-9709? +

On-Chip Debug and Test Interface With Improper Access Control and Improper Protection against Electromagnetic Fault Injection (EM-FI) in Nordic Semiconductor nRF52810 allow attacker to perform EM Fault Injection and bypass APPROTECT at runtime, requiring the least amount of modification to the hardware system possible.

How do I check if I'm vulnerable to CVE-2025-9709? +

You can use Secably's free Website Scanner to check your website for known vulnerabilities. For infrastructure scanning, use the Port Scanner to identify exposed services that may be affected. Check the vendor advisories linked above for specific patch and version information.

Related Vulnerabilities

CVE-2024-41692

This vulnerability exists in SyroTech SY-GPON-1110-WDONT Router due to presence of root terminal access on a serial interface without proper …

CVE-2025-36755

The CleverDisplay BlueOne hardware player is designed with its USB interfaces physically enclosed and inaccessible under normal operating conditions. Researchers …

CVE-2024-48970 9.3

The ventilator's microcontroller lacks memory protection. An attacker could connect to the internal JTAG interface and read or write to …

CVE-2025-65821 7.5

As UART download mode is still enabled on the ESP32 chip on which the firmware runs, an adversary can dump …

CVE-2023-32666 7.2

On-chip debug and test interface with improper access control in some 4th Generation Intel(R) Xeon(R) Processors when using Intel(R) SGX …

CVE-2025-26409 6.8

A serial interface can be accessed with physical access to the PCB of Wattsense Bridge devices. After connecting to the …