Comment on The ESP32 "backdoor" that wasn't | Dark Mentor LLC
SpaceNoodle@lemmy.world 1 year ago
Finally, some technical details that were sorely lacking from yesterday’s article.
Anyway, having direct unprivileged R/W access to platform memory is indeed a security hole, no matter the vendor.
pelya@lemmy.world 1 year ago
It is not. ESP32 is an embedded chip with less than one megabyte of RAM. It cannot run apps or load websites with any malicious code, it only runs the firmware that you flash on it, nothing else, and of course your firmware has full access to every chip feature. If your firmware has a security hole, it’s not the chip’s fault.
SpaceNoodle@lemmy.world 1 year ago
Try reading the article next time.
pelya@lemmy.world 1 year ago
There was no mention of over-the-air exploit, so eh.