Lucene search
+L

1985 matches found

Vulnrichment
Vulnrichment
added 2026/06/03 5:55 p.m.6 views

CVE-2026-45702 OP-TEE has FF-A type confusion in SPMC tmem path that causes S-EL1 kernel panic

OP-TEE is a Trusted Execution Environment TEE designed as companion to a non-secure Linux kernel running on Arm; Cortex-A cores using the TrustZone technology. Starting in version 4.3.0 and prior to version 4.11.0, a type confusion vulnerability exists in OP-TEE OS when processing an FFAMEMSHARE...

4.4CVSS5.8AI score0.00155EPSS
Exploits1References1
Cvelist
Cvelist
added 2026/06/03 5:55 p.m.40 views

CVE-2026-45702 OP-TEE has FF-A type confusion in SPMC tmem path that causes S-EL1 kernel panic

OP-TEE is a Trusted Execution Environment TEE designed as companion to a non-secure Linux kernel running on Arm; Cortex-A cores using the TrustZone technology. Starting in version 4.3.0 and prior to version 4.11.0, a type confusion vulnerability exists in OP-TEE OS when processing an FFAMEMSHARE...

4.4CVSS0.00155EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2026/06/03 4:45 p.m.10 views

CVE-2026-40290

OP-TEE is a Trusted Execution Environment TEE designed as companion to a non-secure Linux kernel running on Arm; Cortex-A cores using the TrustZone technology. Starting in version 3.16.0 and prior to 4.11.0, a user-after-free UAF race condition exists in the shared memory teardown logic of FF-A...

7.8CVSS5.8AI score0.00187EPSS
Exploits1References2Affected Software1
EUVD
EUVD
added 2026/06/03 4:45 p.m.18 views

EUVD-2026-34139

OP-TEE is a Trusted Execution Environment TEE designed as companion to a non-secure Linux kernel running on Arm; Cortex-A cores using the TrustZone technology. Starting in version 3.16.0 and prior to 4.11.0, a user-after-free UAF race condition exists in the shared memory teardown logic of FF-A...

7.8CVSS5.8AI score0.00187EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2026/06/03 4:45 p.m.11 views

CVE-2026-40290 OP-TEE has a Use-After-Free race in FF-A shared-memory teardown

OP-TEE is a Trusted Execution Environment TEE designed as companion to a non-secure Linux kernel running on Arm; Cortex-A cores using the TrustZone technology. Starting in version 3.16.0 and prior to 4.11.0, a user-after-free UAF race condition exists in the shared memory teardown logic of FF-A...

7.8CVSS5.8AI score0.00187EPSS
Exploits1References1
CVE
CVE
added 2026/06/03 4:45 p.m.49 views

CVE-2026-40290

OP-TEE (Trusted Execution Environment) on Arm Cortex-A with TrustZone suffers a Use-After-Free race in FF-A shared-memory teardown when OP-TEE is configured as an SPMC for S-EL0 SPs (CFG_SECURE_PARTITION=y). The bug lies in sp_mem_remove() not acquiring the global sp_mem_lock before freeing entri...

7.8CVSS5.8AI score0.00187EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2026/06/03 4:45 p.m.45 views

CVE-2026-40290 OP-TEE has a Use-After-Free race in FF-A shared-memory teardown

OP-TEE is a Trusted Execution Environment TEE designed as companion to a non-secure Linux kernel running on Arm; Cortex-A cores using the TrustZone technology. Starting in version 3.16.0 and prior to 4.11.0, a user-after-free UAF race condition exists in the shared memory teardown logic of FF-A...

7.8CVSS0.00187EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/06/03 10:1 a.m.14 views

CVE-2026-24088

Cryptographic Issue while processing a specific partition which allows unauthorized write access to load a customized bootloader...

8.2CVSS5.8AI score0.00071EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/06/03 10:1 a.m.19 views

CVE-2026-24090

Cryptographic issue while processing partition table entries allows unauthorized modification of boot flow...

7.1CVSS5.8AI score0.00062EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/06/03 12:0 a.m.16 views

PT-2026-46046

Name of the Vulnerable Software and Affected Versions OP-TEE versions 4.3.0 through 4.10.x Description A type confusion occurs in OP-TEE OS when processing an 'FFA MEM SHARE' request from the normal world. This issue specifically affects configurations where OP-TEE is set as a Secure Partition...

5.5CVSS5.8AI score0.00155EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2026/06/03 12:0 a.m.27 views

PT-2026-46006

Name of the Vulnerable Software and Affected Versions OP-TEE versions 3.16.0 through 4.10.x Description A use-after-free race condition exists in the shared memory teardown logic of FF-A within SPMC/SP flows. This occurs when OP-TEE is configured as an SPMC for S-EL0 SPs using CFG SECURE...

7.8CVSS5.9AI score0.00187EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2026/06/03 12:0 a.m.13 views

Linux Distros Unpatched Vulnerability : CVE-2026-45702

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - OP-TEE is a Trusted Execution Environment TEE designed as companion to a non-secure Linux kernel running on Arm; Cortex-A cores using the TrustZone technology...

5.5CVSS5.9AI score0.00155EPSS
Exploits1References3
EUVD
EUVD
added 2026/06/02 12:31 a.m.13 views

EUVD-2026-33845

Cryptographic Issue while processing a specific partition which allows unauthorized write access to load a customized bootloader...

8.2CVSS5.8AI score0.00071EPSS
Exploits0References2
EUVD
EUVD
added 2026/06/02 12:31 a.m.14 views

EUVD-2026-33847

Cryptographic issue while processing partition table entries allows unauthorized modification of boot flow...

7.1CVSS5.8AI score0.00062EPSS
Exploits0References2
NVD
NVD
added 2026/06/01 11:16 p.m.17 views

CVE-2026-24088

Cryptographic Issue while processing a specific partition which allows unauthorized write access to load a customized bootloader...

8.2CVSS0.00071EPSS
Exploits0References1
NVD
NVD
added 2026/06/01 11:16 p.m.16 views

CVE-2026-24090

Cryptographic issue while processing partition table entries allows unauthorized modification of boot flow...

7.1CVSS0.00062EPSS
Exploits0References1
CVE
CVE
added 2026/06/01 10:5 p.m.32 views

CVE-2026-24090

Technical details (affected products, root cause, impact, and remediation) are not publicly available in the provided documents. Monitor for updates from the vendors and CVE feed.

7.1CVSS5.8AI score0.00062EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2026/06/01 10:5 p.m.13 views

CVE-2026-24090 Missing Authentication for Critical Function in HLOS

Cryptographic issue while processing partition table entries allows unauthorized modification of boot flow...

7.1CVSS5.8AI score0.00062EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/01 10:5 p.m.37 views

CVE-2026-24090 Missing Authentication for Critical Function in HLOS

Cryptographic issue while processing partition table entries allows unauthorized modification of boot flow...

7.1CVSS0.00062EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/06/01 10:5 p.m.11 views

CVE-2026-24090

Cryptographic issue while processing partition table entries allows unauthorized modification of boot flow...

7.1CVSS5.8AI score0.00062EPSS
Exploits0References2
Rows per page
Query Builder