Описание
In ppcfw_deny_sec_dram_access of ppcfw.c, there is a possible arbitrary read from TEE memory due to a logic error in the code. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.
Ссылки
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:o:google:android:-:*:*:*:*:*:*:*
EPSS
Процентиль: 2%
0.00013
Низкий
6.6 Medium
CVSS3
Дефекты
CWE-125
Связанные уязвимости
CVSS3: 6.6
github
11 месяцев назад
In ppcfw_deny_sec_dram_access of ppcfw.c, there is a possible arbitrary read from TEE memory due to a logic error in the code. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.
EPSS
Процентиль: 2%
0.00013
Низкий
6.6 Medium
CVSS3
Дефекты
CWE-125