Описание
An issue was discovered in Trusted Firmware-M through 2.0.0. The lack of argument verification in the logging subsystem allows attackers to read sensitive data via the login function.
Уязвимые конфигурации
Конфигурация 1Версия до 2.0.0 (включая)
cpe:2.3:o:arm:trusted_firmware-m:*:*:*:*:*:*:*:*
EPSS
Процентиль: 32%
0.00122
Низкий
4.7 Medium
CVSS3
Дефекты
NVD-CWE-Other
Связанные уязвимости
CVSS3: 4.7
debian
больше 1 года назад
An issue was discovered in Trusted Firmware-M through 2.0.0. The lack ...
CVSS3: 4.7
github
больше 1 года назад
An issue was discovered in Trusted Firmware-M through 2.0.0. The lack of argument verification in the logging subsystem allows attackers to read sensitive data via the login function.
EPSS
Процентиль: 32%
0.00122
Низкий
4.7 Medium
CVSS3
Дефекты
NVD-CWE-Other