Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
prionPRIOn knowledge basePRION:CVE-2022-25333
HistoryOct 19, 2023 - 10:15 a.m.

Code injection

2023-10-1910:15:00
PRIOn knowledge base
www.prio-n.com
2
texas instruments
omap l138
trusted execution environment
rsa check
mask rom
sk_load
header authenticity
cek
cve-2022-25332
arbitrary code execution
tee security architecture

6.9 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.0%

JSON

The Texas Instruments OMAP L138 (secure variants) trusted execution environment (TEE) performs an RSA check implemented in mask ROM when loading a module through the SK_LOAD routine. However, only the module header authenticity is validated. An adversary can re-use any correctly signed header and append a forged payload, to be encrypted using the CEK (obtainable through CVE-2022-25332) in order to obtain arbitrary code execution in secure context. This constitutes a full break of the TEE security architecture.

References

Related

nvd 3
cve 3
cvelist 3
prion 2
nvd
nvd
CVE-2022-25333
2023-10-19 10:15:09
CVE-2022-25332
2023-10-19 10:15:09
CVE-2022-25334
2023-10-19 10:15:09
cve
cve
CVE-2022-25333
2023-10-19 10:15:09
CVE-2022-25332
2023-10-19 10:15:09
CVE-2022-25334
2023-10-19 10:15:09
cvelist
cvelist
CVE-2022-25333 Flawed SK_LOAD module authenticity check in Texas Instruments OMAP L138
2023-10-19 09:35:03
CVE-2022-25332 SK_LOAD timing side channel during AES module decryption in Texas Instruments OMAP L138
2023-10-19 09:36:24
CVE-2022-25334 Stack overflow on SK_LOAD signature length field in Texas Instruments OMAP L138
2023-10-19 09:36:09
prion
prion
Design/Logic Flaw
2023-10-19 10:15:00
Stack overflow
2023-10-19 10:15:00

6.9 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.0%

JSON
Related for PRION:CVE-2022-25333
nvd3cve3cvelist3prion2