2 matches found
CVE-2022-25333
The CVE-2022-25333 entry concerns the Texas Instruments OMAP L138 secure-variant TEE. The RSA check in the SK_LOAD routine validates only the module header authenticity, allowing an adversary to reuse a signed header with a forged payload decrypted using the CEK, enabling arbitrary code execution...
CVE-2022-25333 Flawed SK_LOAD module authenticity check in Texas Instruments OMAP L138
The Texas Instruments OMAP L138 secure variants trusted execution environment TEE performs an RSA check implemented in mask ROM when loading a module through the SKLOAD routine. However, only the module header authenticity is validated. An adversary can re-use any correctly signed header and appe...