557 matches found
Linaro OP-TEE Buffer Overflow Vulnerability
Linaro OP-TEE is an open source trusted execution environment from Linaro UK. A buffer overflow vulnerability exists in opteeos in Linaro OP-TEE 3.3.0 and earlier versions. The vulnerability stems from a networked system or product performing operations on memory without properly validating data...
PT-2019-11549
Name of the Vulnerable Software and Affected Versions: Linaro/OP-TEE versions prior to 3.4.0 Description: The issue is a buffer overflow in the optee os component, allowing execution of code in the TEE core kernel context. Recommendations: For versions prior to 3.4.0, update to version 3.4.0 or...
The vulnerability of the SMC-processor GLOBAL_CMD_ID_NEED_LOAD_APP in the TEE OS Trusted Core of the Huawei Mate 9 Pro mobile phone operating system allows a perpetrator to trigger a service failure, modify program algorithms (by changing the flags from TRUE/FALSE), or compromise critical data stored in physical memory.
The vulnerability of the SMC-processor GLOBALCMDIDNEEDLOADAPP in the TEE OS Trusted Core of the Huawei Mate 9 Pro mobile phone operating system is related to the lack of validation for input data. Exploiting this vulnerability can allow an attacker to cause service failures, modify program...
June 11, 2019—KB4503290 (Security-only update)
None None...
June 11, 2019—KB4503293 (OS Build 18362.175)
None None...
June 11, 2019—KB4503285 (Monthly Rollup)
None None...
May 19, 2019—KB4505056 (OS Build 17763.504)
None None...
May 14, 2019—KB4499151 (Monthly Rollup)
None None...
April 9, 2019—KB4493467 (Security-only update)
None None...
April 9, 2019—KB4493450 (Security-only update)
None None...
March 12, 2019—KB4489881 (Monthly Rollup)
None None...
The vulnerability of the Qualcomm QTEE keymaster component of the Android operating system allows a intruder to gain access to memory.
The vulnerability of the Qualcomm QTEE keymaster component of the Android operating system is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to gain access to memory...
Google Patches Critical Vulnerabilities in Android OS
Google patched six critical remote code execution flaws in its Android operating system as part of its October Android Security Bulletin. Four of those remote code execution flaws are tied to Android’s Media framework and impact a wide range of Android devices including Google’s Pixel and Nexus...
The vulnerability of the API interface of the Qualcomm Trusted Execution Environment component in the Android operating system allows a perpetrator to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the API interface of the Qualcomm Trusted Execution Environment component in the Android operating system is related to the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to compromise the confidentiality, integrity, and accessibility of...
The vulnerability of the Qualcomm Trusted Execution Environment component in the Android operating system allows a perpetrator to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of Qualcomm Trusted Execution Environment in the Android operating system is related to deficiencies in access control when using IPA Internet Protocol Accelerator. Exploiting this vulnerability can allow a malicious actor to compromise the confidentiality, integrity, and...
The vulnerability of the Qualcomm Trusted Execution Environment component in the Android operating system allows a perpetrator to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of Qualcomm Trusted Execution Environment in the Android operating system is related to access control deficiencies. Exploiting this vulnerability could allow a malicious actor to bypass debug policy restrictions and compromise the confidentiality, integrity, and accessibility o...
The vulnerability of the Qualcomm Trusted Execution Environment component in the Android operating system allows a perpetrator to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of Qualcomm Trusted Execution Environment in the Android operating system is related to deficiencies in access control. Exploiting this vulnerability could allow a malicious actor to compromise the confidentiality, integrity, and accessibility of protected information...
Google Android Qualcomm QTEECOM Driver Privilege Access Control Vulnerability
Android on Google Pixel and Nexus is an open source Linux-based operating system for Google Pixel and Nexus smartphones developed by Google Inc. and the Open Handset Alliance OHA.Qualcomm QTEECOM driver The Qualcomm QTEECOM driver is one of the Secure Execution Environment Communicator drivers. A...
The vulnerability of the Qualcomm QTEE API in the Android operating system allows a perpetrator to compromise the confidentiality, integrity, and accessibility of protected information.
The vulnerability of the Qualcomm QTEE API in the Android operating system is related to errors in handling array indexes. Exploiting this vulnerability can allow a malicious actor to compromise the confidentiality, integrity, and accessibility of the protected information...
The vulnerability of the Qualcomm TZ App Handler component in the Android operating system allows a hacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the Qualcomm TZ App Handler component in the Android operating system exists due to insufficient validation of input data. Exploiting this vulnerability can allow a remote attacker to compromise the confidentiality, integrity, and accessibility of the protected information...