Are these vulnerabilities possible or have been acknowledged: https://www.cvedetails.com/vulnerability-list/vendor_id-1726/year-2019/ST.html Thanks in advance.

> If the Read Protection is set to RDP Level 1 in the Option Bytes, does the above claimed vulnerabilities affect STM32F7xx or STM32H7xx MCUs?

That's a question you should ask the authors of the given paper:

Marc Schink

Fraunhofer Institute AISEC

marc.schink@aisec.fraunhofer.de

Johannes Obermaier

Fraunhofer Institute AISEC

johannes.obermaier@aisec.fraunhofer.de

The paper does not mention either level of RDP. They deal with PCROP, which is something different.

They don't even acknowledge existence of RDP, which is sort of unfair, but then it would decrease the sensational value of their paper.

JW