According to https://en.m.wikipedia.org/wiki/Row_hammer there have been Javascript implementations of Rowhammer. Thus the Drammer attack could also be possible in Javascript and not only by installing an application.

If we could ensure (somehow) that the neo900 is invulnerable to this kind of attack this could be a strong argument for potential buyers. Maybe we could take this advantage by chance. It could be sufficient to test the device for the vulnerability.

Regards
mith