exploitDog

GHSA-qqw6-6jj8-mcrc

Опубликовано: 08 апр. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 5.5

Описание

Out-of-bounds read in enrollment with cdsp frame secfr trustlet prior to SMR Apr-2025 Release 1 allows local privileged attackers to read out-of-bounds memory.

Out-of-bounds read in enrollment with cdsp frame secfr trustlet prior to SMR Apr-2025 Release 1 allows local privileged attackers to read out-of-bounds memory.

Ссылки

EPSS

Процентиль: 21%

0.00067

Низкий

5.5 Medium

CVSS3

CVE ID

Дефекты

CWE-125

Связанные уязвимости

CVE-2025-20948

CVSS3: 5.5

nvd

10 месяцев назад

Out-of-bounds read in enrollment with cdsp frame secfr trustlet prior to SMR Apr-2025 Release 1 allows local privileged attackers to read out-of-bounds memory.

EPSS

Процентиль: 21%

0.00067

Низкий

5.5 Medium

CVSS3

CVE ID

Дефекты

CWE-125