CVE-2022-25332

The CVE-2022-25332 entry concerns the Texas Instruments OMAP L138 family (secure variants) TEE in mask ROM. A timing side-channel in the AES implementation can be exploited by an attacker with non-secure supervisor privileges to manipulate cache content and observe timing differences across ciphe...

CVE-2022-25334

CVE-2022-25334 relates to the Texas Instruments OMAP L138 (secure variants) TEE. The mask ROM SK_LOAD routine has no bounds check on the signature size, so a module with a large signature can overflow the stack and enable arbitrary code execution in the secure supervisor context by overwriting a ...

CVE-2022-25334 Stack overflow on SK_LOAD signature length field in Texas Instruments OMAP L138

The Texas Instruments OMAP L138 secure variants trusted execution environment TEE lacks a bounds check on the signature size field in the SKLOAD module loading routine, present in mask ROM. A module with a sufficiently large signature field causes a stack overflow, affecting secure kernel data...

Texas Instruments OMAP L138 Security Vulnerability

The Texas Instruments OMAP L138 is a DSP+ARM industrial processor from Texas Instruments. A security vulnerability exists in the Texas Instruments OMAP L138 secure variants, which stems from the ES implementation being susceptible to a timing side-channel, which can be exploited by an attacker to...

Microsoft Windows Multiple Vulnerabilities (KB5005031)

This host is missing a critical security update according to Microsoft KB5005031 SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2021-33744

Windows Secure Kernel Mode Security Feature Bypass Vulnerability...

Security feature bypass

Windows Secure Kernel Mode Security Feature Bypass Vulnerability...

CVE-2021-33744 Windows Secure Kernel Mode Security Feature Bypass Vulnerability

...

Microsoft Windows Multiple Vulnerabilities (KB5004245)

This host is missing a critical security update according to Microsoft KB5004245 SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Windows Secure Kernel Mode Security Feature Bypass Vulnerability

...

KLA12221 Multiple vulnerabillities in Microsoft Windows

Multiple vulnerabilities were found in Microsoft Windows. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code, gain privileges, bypass security restrictions, obtain sensitive information, spoof user interface. Below is a complete list of...

CVE-2020-11298

While waiting for a response to a callback or listener request, non-secure clients can change permissions to shared memory buffers used by HLOS Invoke Call to secure kernel in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT,...

The vulnerability of the Windows Secure Kernel Mode mechanism in Windows operating systems allows attackers to increase their privileges.

The vulnerability of the Windows Secure Kernel Mode mechanism in Windows operating systems is related to insecure management of privileges. Exploiting this vulnerability can allow an attacker to enhance their privileges...

CVE-2021-27090

Windows Secure Kernel Mode Elevation of Privilege Vulnerability...

CVE-2021-27090

Windows Secure Kernel Mode Elevation of Privilege Vulnerability...

Privilege escalation

Windows Secure Kernel Mode Elevation of Privilege Vulnerability...

CVE-2021-27090 Windows Secure Kernel Mode Elevation of Privilege Vulnerability

...

CVE-2019-2318

Non Secure Kernel can cause Trustzone to do an arbitrary memory read which will result into DOS in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8017,...

Memory corruption

Non Secure Kernel can cause Trustzone to do an arbitrary memory read which will result into DOS in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8017,...

CVE-2019-2318

Non Secure Kernel can cause Trustzone to do an arbitrary memory read which will result into DOS in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8017,...