CVE-2021-33881
N/A
N/A
Summary
On NXP MIFARE Ultralight and NTAG cards, an attacker can interrupt a write operation (aka conduct a "tear off" attack) over RFID to bypass a Monotonic Counter protection mechanism. The impact depends on how the anti tear-off feature is used in specific applications such as public transportation, physical access control, etc.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- https://blog.quarkslab.com/rfid-monotonic-counter-anti-tearing-defeated.html
- https://www.nxp.com/docs/en/application-note/AN13089.pdf
- https://www.nxp.com/docs/en/application-note/AN11340.pdf
- https://www.sstic.org/2021/presentation/eeprom_it_will_all_end_in_tears/
References
- https://blog.quarkslab.com/rfid-monotonic-counter-anti-tearing-defeated.html
- https://www.nxp.com/docs/en/application-note/AN13089.pdf
- https://www.nxp.com/docs/en/application-note/AN11340.pdf
- https://www.sstic.org/2021/presentation/eeprom_it_will_all_end_in_tears/
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.