Lucene search
K

3 matches found

OSV
OSV
added 2022/01/13 4:15 p.m.4 views

UBUNTU-CVE-2021-40327

Trusted Firmware-M TF-M 1.4.0, when Profile Small is used, has incorrect access control. NSPE can access a secure key held by the Crypto service based solely on knowledge of its key ID. For example, there is no authorization check associated with the relationship between a caller and a key owner...

5.9CVSS5.8AI score0.01194EPSS
Exploits0References5
BDU FSTEC
BDU FSTEC
added 2021/12/01 12:0 a.m.4 views

The vulnerability of the implementation of the NSPE mode for software that creates a trusted execution environment (TEE) in ARM Trusted Firmware-M (TF-M) allows a attacker to trigger a service failure or gain unauthorized access to protected information.

The vulnerability of the implementation of the NSPE mode for software that creates a trusted execution environment TEE in ARM Trusted Firmware-M TF-M is related to data writing outside of the buffer. Exploiting this vulnerability can allow an attacker to cause a service failure or gain unauthoriz...

7.1CVSS7.2AI score0.03093EPSS
Exploits0References6Affected Software1
Positive Technologies
Positive Technologies
added 2021/02/26 12:0 a.m.7 views

PT-2021-4942

Name of the Vulnerable Software and Affected Versions Arm Trusted Firmware-M versions M through 1.2 Description The issue is related to an out-of-bounds write in the implementation of the NSPE Non-secure Processing Environment mode in Arm Trusted Firmware-M. This can cause a system halt, overwrit...

6.6CVSS6.9AI score0.03093EPSS
Exploits0References11
Rows per page
Query Builder