CVE-2021-46795

A TOCTOU time-of-check to time-of-use vulnerability exists where an attacker may use a compromised BIOS to cause the TEE OS to read memory out of bounds that could potentially result in a denial of service...

Out-of-bounds

A TOCTOU time-of-check to time-of-use vulnerability exists where an attacker may use a compromised BIOS to cause the TEE OS to read memory out of bounds that could potentially result in a denial of service...

CVE-2021-46795

A TOCTOU time-of-check to time-of-use vulnerability exists where an attacker may use a compromised BIOS to cause the TEE OS to read memory out of bounds that could potentially result in a denial of service...

CVE-2021-46795

A TOCTOU time-of-check to time-of-use vulnerability exists where an attacker may use a compromised BIOS to cause the TEE OS to read memory out of bounds that could potentially result in a denial of service...

CVE-2021-46795

CVE-2021-46795 is a TOCTOU vulnerability where a compromised BIOS can trigger the TEE OS to read memory out-of-bounds, potentially causing a denial of service. Public details consistently describe the affected component as the TEE/ASP-SMU hardware stack in AMD platforms with BIOS-based mitigation...

PT-2023-12589 · Tee Os · Tee Os

Name of the Vulnerable Software and Affected Versions: TEE OS affected versions not specified Description: A TOCTOU time-of-check to time-of-use issue exists, allowing an attacker with a compromised BIOS to potentially cause the TEE OS to read memory out of bounds, resulting in a denial of servic...

Exploit for Race Condition in Linux Linux_Kernel

CVE-2021-44733: Fuzzing and exploitation of a use-after-free i...

CVE-2021-44149

An issue was discovered in Trusted Firmware OP-TEE Trusted OS through 3.15.0. The OPTEE-OS CSU driver for NXP i.MX6UL SoC devices lacks security access configuration for wakeup-related registers, resulting in TrustZone bypass because the NonSecure World can perform arbitrary memory read/write...

Design/Logic Flaw

An issue was discovered in Trusted Firmware OP-TEE Trusted OS through 3.15.0. The OPTEE-OS CSU driver for NXP i.MX6UL SoC devices lacks security access configuration for wakeup-related registers, resulting in TrustZone bypass because the NonSecure World can perform arbitrary memory read/write...

CVE-2021-44149

An issue was discovered in Trusted Firmware OP-TEE Trusted OS through 3.15.0. The OPTEE-OS CSU driver for NXP i.MX6UL SoC devices lacks security access configuration for wakeup-related registers, resulting in TrustZone bypass because the NonSecure World can perform arbitrary memory read/write...

The vulnerability of the map_ns_operation function in the TEE OS Trusted Core driver of the Huawei Mate 9 Pro mobile phone allows a hacker to cause a service failure.

The vulnerability of the mapnsoperation function in the TEE OS Trusted Core driver of Huawei Mate 9 Pro mobile phone’s microprogramming system is related to the assignment of an untrusted pointer. Exploiting this vulnerability could allow a malicious actor, operating locally, to trigger a service...

The vulnerability of the TEEOS.img file (with a offset of 0x158608) in the SMC-processor’s GLOBAL_CMD_ID_LOAD_SECURE_APP function of the TEE OS Trusted Core in the microprogramming system of the Huawei Mate 9 Pro mobile phone. This vulnerability allows an attacker to cause a service failure, modify program algorithms (by changing the flags from TRUE/FALSE), or compromise critical data stored in physical memory.

The vulnerability of the TEEOS.img file with a offset of 0x158608 in the SMC-processor’s GLOBALCMDIDLOADSECUREAPP function of the TEE OS Trusted Core in the microprogramming of the Huawei Mate 9 Pro mobile phone is related to the swapping of an unauthorized pointer. Exploiting this vulnerability...