CVE-2021-26380

CVE-2021-26380 affects a compromised Trusted OS (TOS) driver. The vulnerability could allow a malformed call to cause memory access outside the intended range, potentially impacting system integrity. The base CVSS score is 1.8 (LOW) with local attack vector and high privileges required, and no us...

PT-2026-41237

A compromised Trusted OS TOS driver could issue a malformed call that could potentially allow memory access outside the intended range resulting in loss of integrity...

CVE-2021-26381

Improper system call parameter validation in the Trusted OS may allow a malicious driver to perform mapping or unmapping operations on a large number of pages, potentially resulting in kernel memory corruption...

CVE-2022-42269

NVIDIA Trusted OS contains a vulnerability in an SMC call handler, where failure to validate untrusted input may allow a highly privileged local attacker to cause information disclosure and compromise integrity. The scope of the impact can extend to other components...

EUVD-2019-15254

Malware in sbrugna...

EUVD-2021-13174

Malware in sbrugna...

EUVD-2022-45344

Malicious code in bioql PyPI...

CVE-2021-26377

Insufficient parameter validation while allocating process space in the Trusted OS TOS may allow for a malicious userspace process to trigger an integer overflow, leading to a potential denial of service...

CVE-2021-26377

Insufficient parameter validation while allocating process space in the Trusted OS TOS may allow for a malicious userspace process to trigger an integer overflow, leading to a potential denial of service...

CVE-2023-20515

Improper access control in the fTPM driver in the trusted OS could allow a privileged attacker to corrupt system memory, potentially leading to loss of integrity, confidentiality, or availability...

OP-TEE Trusted OS Resource Management Error Vulnerability

OP-TEE Trusted OS is an OP-TEE open source Trusted Execution Environment TEE that implements Arm TrustZone technology. A resource management error vulnerability exists in OP-TEE Trusted OS. No information about this vulnerability is available at this time, please stay tuned to CNNVD or the vendor...

CVE-2022-42269

NVIDIA Trusted OS contains a vulnerability in an SMC call handler, where failure to validate untrusted input may allow a highly privileged local attacker to cause information disclosure and compromise integrity. The scope of the impact can extend to other components...

Input validation

NVIDIA Trusted OS contains a vulnerability in an SMC call handler, where failure to validate untrusted input may allow a highly privileged local attacker to cause information disclosure and compromise integrity. The scope of the impact can extend to other components...

CVE-2022-42269

NVIDIA Trusted OS contains a vulnerability in an SMC call handler, where failure to validate untrusted input may allow a highly privileged local attacker to cause information disclosure and compromise integrity. The scope of the impact can extend to other components...

CVE-2022-42269

CVE-2022-42269 affects NVIDIA Trusted OS via an SMC call handler where untrusted input is not validated, allowing a highly privileged local attacker to disclose information and compromise integrity. The issue is documented across multiple sources, with NVIDIA’s security bulletin indicating affect...

PT-2022-26349 · Nvidia · Nvidia Trusted Os

Name of the Vulnerable Software and Affected Versions: NVIDIA Trusted OS affected versions not specified Description: The issue is related to a vulnerability in an SMC call handler within NVIDIA Trusted OS, where the failure to validate untrusted input may allow a highly privileged local attacker...

CVE-2022-42269

NVIDIA Trusted OS contains a vulnerability in an SMC call handler, where failure to validate untrusted input may allow a highly privileged local attacker to cause information disclosure and compromise integrity. The scope of the impact can extend to other components...

Input validation

OP-TEE Trusted OS is the secure side implementation of OP-TEE project, a Trusted Execution Environment. Versions prior to 3.19.0, contain an Improper Validation of Array Index vulnerability. The function cleanupshmrefs is called by both entryinvokecommand and entryopensession. The commands...

OP-TEE Trusted OS 输入验证错误漏洞

OP-TEE Trusted OS is OP-TEE open source an open source trusted execution environment TEE that implements Arm TrustZone technology. A buffer overflow vulnerability exists in OP-TEE Trusted OS versions prior to 3.19.0, which stems from an unvalidated "numparams" parameter that can be exploited to...

CVE-2022-46152

OP-TEE Trusted OS is the secure side implementation of OP-TEE project, a Trusted Execution Environment. Versions prior to 3.19.0, contain an Improper Validation of Array Index vulnerability. The function cleanupshmrefs is called by both entryinvokecommand and entryopensession. The commands...