188 matches found
The vulnerability of OPTEE, a microprogramming software component for MediaTek chips, allows attackers to enhance their privileges.
The vulnerability of OPTEE microprogramming software components in MediaTek’s chips relates to writing beyond the buffer boundaries in memory. Exploiting this vulnerability can allow attackers to enhance their privileges...
CVE-2023-41325 OP-TEE double free in shdr_verify_signature
OP-TEE is a Trusted Execution Environment TEE designed as companion to a non-secure Linux kernel running on Arm; Cortex-A cores using the TrustZone technology. Starting in version 3.20 and prior to version 3.22, shdrverifysignature can make a double free. shdrverifysignature used to verify a TA...
OP-TEE Trusted OS Resource Management Error Vulnerability
OP-TEE Trusted OS is an OP-TEE open source Trusted Execution Environment TEE that implements Arm TrustZone technology. A resource management error vulnerability exists in OP-TEE Trusted OS. No information about this vulnerability is available at this time, please stay tuned to CNNVD or the vendor...
CVE-2023-20808
In OPTEE, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: DTV03645895; Issue ID: DTV03645895...
CVE-2023-20808
In OPTEE, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: DTV03645895; Issue ID: DTV03645895...
Out-of-bounds
In OPTEE, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: DTV03645895; Issue ID: DTV03645895...
CVE-2023-20808
In OPTEE, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: DTV03645895; Issue ID: DTV03645895...
CVE-2023-20808
CVE-2023-20808 affects OPTEE on MediaTek chipsets. The vulnerability is an out-of-bounds write caused by a missing bounds check in OPTEE, enabling local escalation of privileges with System execution privileges required and no user interaction needed. Exploitation status is not detailed in the pr...
CVE-2023-20808
In OPTEE, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: DTV03645895; Issue ID: DTV03645895...
PT-2023-5633 · Mediatek · Op-Tee
Name of the Vulnerable Software and Affected Versions: OPTEE affected versions not specified Description: The issue is related to a buffer overflow in the OPTEE component of MediaTek chipsets, which could allow an attacker to escalate their privileges. This is due to a missing bounds check, leadi...
SUSE CVE-2016-6129
The rsaverifyhashex function in rsaverifyhash.c in LibTomCrypt, as used in OP-TEE before 2.2.0, does not validate that the message length is equal to the ASN.1 encoded data length, which makes it easier for remote attackers to forge RSA signatures or public certificates by leveraging a...
PT-2022-28073 · Trustedfirmware · Op-Tee
Name of the Vulnerable Software and Affected Versions: TrustedFirmware Open Portable Trusted Execution Environment OP-TEE versions prior to 3.20 Description: The issue is related to an unprotected memory-access operation in optee os, allowing a physically proximate adversary to bypass signature...
GSD-2021-1002841 tee: optee: Fix incorrect page free bug
tee: optee: Fix incorrect page free bug This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.12 by commit...
GSD-2021-1002811 tee: optee: Fix incorrect page free bug
tee: optee: Fix incorrect page free bug This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.89 by commit...
PT-2021-8130 · Linux +2 · Linux Kernel +2
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to the optee component of the Linux kernel, where a bug in the page free mechanism can lead to incorrect memory deallocation. This can cause a denial of service. T...
NXP i.MX SoC has unspecified vulnerabilities
NXP i.MX SoC is nxp's multi-core solution for multimedia and display applications with scalable, secure and reliable high-performance and low-power features. nXP i.MX SoC devices have a security vulnerability that stems from the OPTEE-OS CSU driver for NXP i.MX SoC devices lacking secure access...
CVE-2021-36133
The OPTEE-OS CSU driver for NXP i.MX SoC devices lacks security access configuration for several models, resulting in TrustZone bypass because the NonSecure World can perform arbitrary memory read/write operations on Secure World memory. This involves a DMA capable peripheral...
CVE-2021-44149
An issue was discovered in Trusted Firmware OP-TEE Trusted OS through 3.15.0. The OPTEE-OS CSU driver for NXP i.MX6UL SoC devices lacks security access configuration for wakeup-related registers, resulting in TrustZone bypass because the NonSecure World can perform arbitrary memory read/write...
CVE-2021-36133
The OPTEE-OS CSU driver for NXP i.MX SoC devices lacks security access configuration for several models, resulting in TrustZone bypass because the NonSecure World can perform arbitrary memory read/write operations on Secure World memory. This involves a DMA capable peripheral...
DEBIAN-CVE-2021-36133
The OPTEE-OS CSU driver for NXP i.MX SoC devices lacks security access configuration for several models, resulting in TrustZone bypass because the NonSecure World can perform arbitrary memory read/write operations on Secure World memory. This involves a DMA capable peripheral...