Lucene search
K

26 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2017-16903

Malware in sbrugna...

6CVSS6AI score0.00259EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2017-16907

Malware in sbrugna...

6.3CVSS6.5AI score0.00344EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2021-22765

Malware in sbrugna...

7.1CVSS6.8AI score0.0026EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-43602

Malicious code in bioql PyPI...

7.8CVSS7.6AI score0.00145EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/22 9:13 p.m.6 views

CVE-2021-36133

The OPTEE-OS CSU driver for NXP i.MX SoC devices lacks security access configuration for several models, resulting in TrustZone bypass because the NonSecure World can perform arbitrary memory read/write operations on Secure World memory. This involves a DMA capable peripheral...

7.1CVSS7.2AI score0.0026EPSS
Exploits0References1
NVD
NVD
added 2023/10/17 12:15 p.m.21 views

CVE-2023-39902

A software vulnerability has been identified in the U-Boot Secondary Program Loader SPL before 2023.07 on select NXP i.MX 8M family processors. Under certain conditions, a crafted Flattened Image Tree FIT format structure can be used to overwrite SPL memory, allowing unauthenticated software to...

7.8CVSS7.2AI score0.00145EPSS
Exploits0References2
Prion
Prion
added 2023/10/17 12:15 p.m.20 views

Format string

A software vulnerability has been identified in the U-Boot Secondary Program Loader SPL before 2023.07 on select NXP i.MX 8M family processors. Under certain conditions, a crafted Flattened Image Tree FIT format structure can be used to overwrite SPL memory, allowing unauthenticated software to...

4.3CVSS7.7AI score0.00145EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2023/10/17 12:0 a.m.12 views

CVE-2023-39902

A software vulnerability has been identified in the U-Boot Secondary Program Loader SPL before 2023.07 on select NXP i.MX 8M family processors. Under certain conditions, a crafted Flattened Image Tree FIT format structure can be used to overwrite SPL memory, allowing unauthenticated software to...

7CVSS7.2AI score0.00145EPSS
Exploits0References2
CVE
CVE
added 2023/10/17 12:0 a.m.41 views

CVE-2023-39902

CVE-2023-39902 – Normal mode : The issue affects U-Boot Secondary Program Loader (SPL) on select NXP i.MX 8M family processors, prior to version 2023.07. A crafted Flattened Image Tree (FIT) structure can overwrite SPL memory, enabling unauthenticated software to execute on the target and causing...

7.8CVSS7.7AI score0.00145EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2023/10/17 12:0 a.m.27 views

CVE-2023-39902

A software vulnerability has been identified in the U-Boot Secondary Program Loader SPL before 2023.07 on select NXP i.MX 8M family processors. Under certain conditions, a crafted Flattened Image Tree FIT format structure can be used to overwrite SPL memory, allowing unauthenticated software to...

7CVSS7.9AI score0.00145EPSS
Exploits0References2
CNVD
CNVD
added 2021/12/08 12:0 a.m.16 views

NXP i.MX SoC has unspecified vulnerabilities

NXP i.MX SoC is nxp's multi-core solution for multimedia and display applications with scalable, secure and reliable high-performance and low-power features. nXP i.MX SoC devices have a security vulnerability that stems from the OPTEE-OS CSU driver for NXP i.MX SoC devices lacking secure access...

7.1CVSS3.1AI score0.0026EPSS
Exploits0References1
NVD
NVD
added 2021/12/07 9:15 p.m.20 views

CVE-2021-36133

The OPTEE-OS CSU driver for NXP i.MX SoC devices lacks security access configuration for several models, resulting in TrustZone bypass because the NonSecure World can perform arbitrary memory read/write operations on Secure World memory. This involves a DMA capable peripheral...

7.1CVSS0.0026EPSS
Exploits0References1
OSV
OSV
added 2021/12/07 9:15 p.m.7 views

CVE-2021-36133

The OPTEE-OS CSU driver for NXP i.MX SoC devices lacks security access configuration for several models, resulting in TrustZone bypass because the NonSecure World can perform arbitrary memory read/write operations on Secure World memory. This involves a DMA capable peripheral...

7.1CVSS7.1AI score
Exploits0References1
Prion
Prion
added 2021/12/07 9:15 p.m.15 views

Design/Logic Flaw

The OPTEE-OS CSU driver for NXP i.MX SoC devices lacks security access configuration for several models, resulting in TrustZone bypass because the NonSecure World can perform arbitrary memory read/write operations on Secure World memory. This involves a DMA capable peripheral...

3.6CVSS7AI score0.0026EPSS
Exploits0References1
CVE
CVE
added 2021/12/07 8:42 p.m.51 views

CVE-2021-36133

The CVE-2021-36133 entry concerns the OPTEE-OS CSU driver for NXP i.MX SoC devices. The root issue is a lack of proper security access configuration for several models, enabling a TrustZone bypass where the NonSecure World can perform arbitrary reads/writes of Secure World memory via a DMA-capabl...

7.1CVSS7AI score0.0026EPSS
Exploits0References1Affected Software1
Debian CVE
Debian CVE
added 2021/12/07 8:42 p.m.20 views

CVE-2021-36133

The OPTEE-OS CSU driver for NXP i.MX SoC devices lacks security access configuration for several models, resulting in TrustZone bypass because the NonSecure World can perform arbitrary memory read/write operations on Secure World memory. This involves a DMA capable peripheral...

7.1CVSS7AI score0.0026EPSS
Exploits0
Cvelist
Cvelist
added 2021/12/07 8:42 p.m.21 views

CVE-2021-36133

The OPTEE-OS CSU driver for NXP i.MX SoC devices lacks security access configuration for several models, resulting in TrustZone bypass because the NonSecure World can perform arbitrary memory read/write operations on Secure World memory. This involves a DMA capable peripheral...

7.2AI score0.0026EPSS
Exploits0References1
ICS
ICS
added 2017/10/12 12:0 a.m.105 views

NXP Semiconductors MQX RTOS (Update A)

CVSS v3 8.1 ATTENTION: Remotely exploitable/low skill level to exploit. Vendor: NXP Semiconductors Equipment: MQX RTOS Vulnerabilities: Classic Buffer Overflow, Out-of-Bounds Read UPDATE INFORMATION This updated advisory is a follow-up to the original advisory titled ICSA-17-285-04 NXP...

8.1CVSS8.2AI score0.13021EPSS
Exploits3References6
Prion
Prion
added 2017/08/07 8:29 a.m.18 views

Stack overflow

A stack-based buffer overflow issue was discovered in NXP i.MX 50, i.MX 53, i.MX 6ULL, i.MX 6UltraLite, i.MX 6SoloLite, i.MX 6Solo, i.MX 6DualLite, i.MX 6SoloX, i.MX 6Dual, i.MX 6Quad, i.MX 6DualPlus, i.MX 6QuadPlus, Vybrid VF3xx, Vybrid VF5xx, and Vybrid VF6xx. When the device is configured in...

4.4CVSS6.5AI score0.00344EPSS
Exploits0References2
Prion
Prion
added 2017/08/07 8:29 a.m.17 views

Input validation

An improper certificate validation issue was discovered in NXP i.MX 28 i.MX 50, i.MX 53, i.MX 7Solo i.MX 7Dual Vybrid VF3xx, Vybrid VF5xx, Vybrid VF6xx, i.MX 6ULL, i.MX 6UltraLite, i.MX 6SoloLite, i.MX 6Solo, i.MX 6DualLite, i.MX 6SoloX, i.MX 6Dual, i.MX 6Quad, i.MX 6DualPlus, and i.MX 6QuadPlus...

4.4CVSS6.2AI score0.00259EPSS
Exploits0References2
Rows per page
Query Builder