10 matches found
CVE-2023-40271
In Trusted Firmware-M through TF-Mv1.8.0, for platforms that integrate the CryptoCell accelerator, when the CryptoCell PSA Driver software Interface is selected, and the Authenticated Encryption with Associated Data Chacha20-Poly1305 algorithm is used, with the single-part verification function...
EUVD-2023-44867
Malicious code in bioql PyPI...
CVE-2023-40271
In Trusted Firmware-M through TF-Mv1.8.0, for platforms that integrate the CryptoCell accelerator, when the CryptoCell PSA Driver software Interface is selected, and the Authenticated Encryption with Associated Data Chacha20-Poly1305 algorithm is used, with the single-part verification function...
CVE-2023-40271
In Trusted Firmware-M through TF-Mv1.8.0, for platforms that integrate the CryptoCell accelerator, when the CryptoCell PSA Driver software Interface is selected, and the Authenticated Encryption with Associated Data Chacha20-Poly1305 algorithm is used, with the single-part verification function...
Design/Logic Flaw
In Trusted Firmware-M through TF-Mv1.8.0, for platforms that integrate the CryptoCell accelerator, when the CryptoCell PSA Driver software Interface is selected, and the Authenticated Encryption with Associated Data Chacha20-Poly1305 algorithm is used, with the single-part verification function...
CVE-2023-40271
In Trusted Firmware-M through TF-Mv1.8.0, for platforms that integrate the CryptoCell accelerator, when the CryptoCell PSA Driver software Interface is selected, and the Authenticated Encryption with Associated Data Chacha20-Poly1305 algorithm is used, with the single-part verification function...
CVE-2023-40271
Summary: CVE-2023-40271 describes a vulnerability in Trusted Firmware-M (TF-M) up to v1.8.0 where, on platforms using the CryptoCell PSA Driver with ChaCha20-Poly1305, the authentication tag verification performed by a single-part path compares only the first 4 bytes of the 16-byte tag. This inco...
CVE-2023-40271
In Trusted Firmware-M through TF-Mv1.8.0, for platforms that integrate the CryptoCell accelerator, when the CryptoCell PSA Driver software Interface is selected, and the Authenticated Encryption with Associated Data Chacha20-Poly1305 algorithm is used, with the single-part verification function...
PT-2023-27353 · Unknown · Cryptocell Psa Driver +1
Name of the Vulnerable Software and Affected Versions: Trusted Firmware-M versions TF-Mv1.6.0 through TF-Mv1.8.0 Description: The issue arises when the CryptoCell PSA Driver software Interface is selected, and the Authenticated Encryption with Associated Data Chacha20-Poly1305 algorithm is used. ...
CVE-2021-29415
The CVE-2021-29415 entry concerns the ECC hardware accelerator in ARM TrustZone CryptoCell 310, embedded in Nordic Semiconductor nRF52840 prior to 2021-03-29. The issue is a non-constant time ECDSA implementation, which can allow an adversary to recover the private ECC key used during an ECDSA op...