exploitDog

GHSA-w8p4-6wv2-jvj3

Опубликовано: 02 мар. 2022

Источник: github

Github: Не прошло ревью

CVSS3: 7.8

Описание

Trusted Firmware M 1.4.x through 1.4.1 has a buffer overflow issue in the Firmware Update partition. In the IPC model, a psa_fwu_write caller from SPE or NSPE can overwrite stack memory locations.

Trusted Firmware M 1.4.x through 1.4.1 has a buffer overflow issue in the Firmware Update partition. In the IPC model, a psa_fwu_write caller from SPE or NSPE can overwrite stack memory locations.

Ссылки

EPSS

Процентиль: 39%

0.00172

Низкий

7.8 High

CVSS3

CVE ID

Дефекты

CWE-120

Связанные уязвимости

CVE-2021-43619

CVSS3: 7.8

nvd

почти 4 года назад

Trusted Firmware M 1.4.x through 1.4.1 has a buffer overflow issue in the Firmware Update partition. In the IPC model, a psa_fwu_write caller from SPE or NSPE can overwrite stack memory locations.

EPSS

Процентиль: 39%

0.00172

Низкий

7.8 High

CVSS3

CVE ID

Дефекты

CWE-120