Is Your Memory Protected? Uncovering Hidden Vulnerabilities in Automotive MPU Mechanisms

As you read these lines on your computer screen, the device facilitating this interaction is equipped with a Memory Management Unit (MMU). MMUs are the unsung heroes of modern computing, managing memory resources and ensuring smooth software operation. From smartphones to powerful servers, MMUs optimize performance and safeguard against security vulnerabilities.

This talk focuses on the less discussed but equally crucial Memory Protection Unit (MPU), which may be likened to the younger, underappreciated sibling of the MMU. MPUs are commonly used in microcontrollers (MCUs) in Automotive Electronic Control Units (ECUs). They play a key role in enforcing memory protection, preventing unauthorized access and safeguarding against security threats.

Our presentation highlights the importance of MPUs as a fundamental security mechanism in today’s automotive control units. It presents two new vulnerabilities, designated CVE-2023-48010 and CVE-2024-33882, that we discovered in two different PowerPC microcontroller families specifically designed for automotive applications and extensively used in various ECUs. These vulnerabilities facilitate bypass of MPU protection mechanisms, thereby exposing the system to potential security threats.

This talk concludes with a description of the responsible disclosure process, as well as our suggested mitigations for these vulnerabilities and additional shared insights for the security community.

By:
Nimrod Stoler | Security Researcher, PlaxidityX
David Lazar | Embedded Security Research Team Leader, PlaxidityX

Full Abstract and Presentation Materials:
https://www.blackhat.com/eu-24/briefings/schedule/index.html#is-your-memory-protected–uncovering-hidden-vulnerabilities-in-automotive-mpu-mechanisms-42223Black HatRead More