Lucene search
K

13 matches found

OSV
OSV
added 2024/03/08 11:7 a.m.6 views

OESA-2024-1264 arm-trusted-firmware security update

Trusted Firmware-A is a reference implementation of secure world software for Arm A-Profile architectures Armv8-A and Armv7-A, including an Exception Level 3 EL3 Secure Monitor. Security Fixes: Trusted Firmware-A TF-A before 2.10 has a potential read out-of-bounds in the SDEI service. The input...

4.4CVSS7AI score0.00224EPSS
Exploits0References2
NVD
NVD
added 2024/02/21 4:15 p.m.20 views

CVE-2023-49100

Trusted Firmware-A TF-A before 2.10 has a potential read out-of-bounds in the SDEI service. The input parameter passed in register x1 is not validated well enough in the function sdeiinterruptbind. The parameter is passed to a call to platicgetinterrupttype. It can be any arbitrary value passing...

4.4CVSS6.4AI score0.00224EPSS
Exploits0References3
OSV
OSV
added 2024/02/21 4:15 p.m.6 views

CVE-2023-49100

Trusted Firmware-A TF-A before 2.10 has a potential read out-of-bounds in the SDEI service. The input parameter passed in register x1 is not validated well enough in the function sdeiinterruptbind. The parameter is passed to a call to platicgetinterrupttype. It can be any arbitrary value passing...

4.4CVSS6.6AI score
Exploits0References3
OSV
OSV
added 2024/02/21 4:15 p.m.4 views

DEBIAN-CVE-2023-49100

Trusted Firmware-A TF-A before 2.10 has a potential read out-of-bounds in the SDEI service. The input parameter passed in register x1 is not validated well enough in the function sdeiinterruptbind. The parameter is passed to a call to platicgetinterrupttype. It can be any arbitrary value passing...

4.4CVSS5.2AI score0.00224EPSS
Exploits0References1
OSV
OSV
added 2024/02/21 4:15 p.m.5 views

ALPINE-CVE-2023-49100

Trusted Firmware-A TF-A before 2.10 has a potential read out-of-bounds in the SDEI service. The input parameter passed in register x1 is not validated well enough in the function sdeiinterruptbind. The parameter is passed to a call to platicgetinterrupttype. It can be any arbitrary value passing...

4.4CVSS7AI score0.00224EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2024/02/21 4:15 p.m.8 views

CVE-2023-49100

Trusted Firmware-A TF-A before 2.10 has a potential read out-of-bounds in the SDEI service. The input parameter passed in register x1 is not validated well enough in the function sdeiinterruptbind. The parameter is passed to a call to platicgetinterrupttype. It can be any arbitrary value passing...

4.4CVSS5.9AI score0.00224EPSS
Exploits0References2
Prion
Prion
added 2024/02/21 4:15 p.m.12 views

Out-of-bounds

Trusted Firmware-A TF-A before 2.10 has a potential read out-of-bounds in the SDEI service. The input parameter passed in register x1 is not validated well enough in the function sdeiinterruptbind. The parameter is passed to a call to platicgetinterrupttype. It can be any arbitrary value passing...

7.2AI score0.00224EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2024/02/21 12:0 a.m.5 views

PT-2024-13674 · Unknown +1 · Arm Trusted Firmware +1

Name of the Vulnerable Software and Affected Versions: Trusted Firmware-A TF-A versions prior to 2.10 Description: The issue is related to a potential read out-of-bounds in the SDEI service. The input parameter passed in register x1 is not validated well enough in the function sdei interrupt bind...

4.4CVSS4.9AI score0.00224EPSS
Exploits0References16
CVE
CVE
added 2024/02/21 12:0 a.m.6092 views

CVE-2023-49100

TF-A before 2.10 has CVE-2023-49100: a read-out-of-bounds in the SDEI service due to insufficient validation of the x1 parameter in sdei_interrupt_bind, passing to plat_ic_get_interrupt_type and bypassing plat_ic_is_sgi checks. A compromised Normal World (Linux) can issue arbitrary SMC calls, con...

4.4CVSS6.5AI score0.00224EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2024/02/21 12:0 a.m.13 views

CVE-2023-49100

Trusted Firmware-A TF-A before 2.10 has a potential read out-of-bounds in the SDEI service. The input parameter passed in register x1 is not validated well enough in the function sdeiinterruptbind. The parameter is passed to a call to platicgetinterrupttype. It can be any arbitrary value passing...

7AI score0.00224EPSS
Exploits0References3
Cvelist
Cvelist
added 2024/02/21 12:0 a.m.19 views

CVE-2023-49100

Trusted Firmware-A TF-A before 2.10 has a potential read out-of-bounds in the SDEI service. The input parameter passed in register x1 is not validated well enough in the function sdeiinterruptbind. The parameter is passed to a call to platicgetinterrupttype. It can be any arbitrary value passing...

6.7AI score0.00224EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2024/02/21 12:0 a.m.13 views

CVE-2023-49100

Trusted Firmware-A TF-A before 2.10 has a potential read out-of-bounds in the SDEI service. The input parameter passed in register x1 is not validated well enough in the function sdeiinterruptbind. The parameter is passed to a call to platicgetinterrupttype. It can be any arbitrary value passing...

4.4CVSS5.2AI score0.00224EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2024/02/21 12:0 a.m.4 views

CVE-2023-49100

Trusted Firmware-A TF-A before 2.10 has a potential read out-of-bounds in the SDEI service. The input parameter passed in register x1 is not validated well enough in the function sdeiinterruptbind. The parameter is passed to a call to platicgetinterrupttype. It can be any arbitrary value passing...

4.4CVSS6.8AI score0.00224EPSS
Exploits0
Rows per page
Query Builder