Trustedfirmware

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2022-46392 3Arm FedoraprojectTrustedfirmware 3Fedora Mbed TlsMbed Tls Jun 5, 2026 Dec 15, 2022 N/A· v4 5.3 MEDIUM· v3 N/A· v2 An issue was discovered in Mbed TLS before 2.28.2 and 3.x before 3.3.0. An adversary with access to precise enough information about memory accesses (typically, an untrusted operating system attacking a secure enclave) c...Show more An issue was discovered in Mbed TLS before 2.28.2 and 3.x before 3.3.0. An adversary with access to precise enough information about memory accesses (typically, an untrusted operating system attacking a secure enclave) can recover an RSA private key after observing the victim performing a single private-key operation, if the window size (MBEDTLS_MPI_WINDOW_SIZE) used for the exponentiation is 3 or smaller.Show less
CVE-2022-46152 2Op Tee Trustedfirmware 2Op Tee Op Tee Os Jun 5, 2026 Nov 29, 2022 N/A· v4 8.8 HIGH· v3 N/A· v2 OP-TEE Trusted OS is the secure side implementation of OP-TEE project, a Trusted Execution Environment. Versions prior to 3.19.0, contain an Improper Validation of Array Index vulnerability. The function `cleanup_shm_ref...Show more OP-TEE Trusted OS is the secure side implementation of OP-TEE project, a Trusted Execution Environment. Versions prior to 3.19.0, contain an Improper Validation of Array Index vulnerability. The function `cleanup_shm_refs()` is called by both `entry_invoke_command()` and `entry_open_session()`. The commands `OPTEE_MSG_CMD_OPEN_SESSION` and `OPTEE_MSG_CMD_INVOKE_COMMAND` can be executed from the normal world via an OP-TEE SMC. This function is not validating the `num_params` argument, which is only limited to `OPTEE_MSG_MAX_NUM_PARAMS` (127) in the function `get_cmd_buffer()`. Therefore, an attacker in the normal world can craft an SMC call that will cause out-of-bounds reading in `cleanup_shm_refs` and potentially freeing of fake-objects in the function `mobj_put()`. A normal-world attacker with permission to execute SMC instructions may exploit this flaw. Maintainers believe this problem permits local privilege escalation from the normal world to the secure world. Version 3.19.0 contains a fix for this issue. There are no known workarounds.Show less
CVE-2022-35409 3Arm DebianTrustedfirmware 3Debian Linux Mbed TlsMbed Tls Jun 5, 2026 Jul 15, 2022 N/A· v4 9.1 CRITICAL· v3 N/A· v2 An issue was discovered in Mbed TLS before 2.28.1 and 3.x before 3.2.0. In some configurations, an unauthenticated attacker can send an invalid ClientHello message to a DTLS server that causes a heap-based buffer over-re...Show more An issue was discovered in Mbed TLS before 2.28.1 and 3.x before 3.2.0. In some configurations, an unauthenticated attacker can send an invalid ClientHello message to a DTLS server that causes a heap-based buffer over-read of up to 255 bytes. This can cause a server crash or possibly information disclosure based on error responses. Affected configurations have MBEDTLS_SSL_DTLS_CLIENT_PORT_REUSE enabled and MBEDTLS_SSL_IN_CONTENT_LEN less than a threshold that depends on the configuration: 258 bytes if using mbedtls_ssl_cookie_check, and possibly up to 571 bytes with a custom cookie check function.Show less
CVE-2021-43619 2Arm Trustedfirmware 2Trusted Firmware M Trusted Firmware M Jun 5, 2026 Mar 1, 2022 N/A· v4 7.8 HIGH· v3 4.6 MEDIUM· v2 Trusted Firmware M 1.4.x through 1.4.1 has a buffer overflow issue in the Firmware Update partition. In the IPC model, a psa_fwu_write caller from SPE or NSPE can overwrite stack memory locations.
CVE-2021-40327 1Trustedfirmware 1Trusted Firmware M Jun 5, 2026 Jan 13, 2022 N/A· v4 5.9 MEDIUM· v3 2.6 LOW· v2 Trusted Firmware-M (TF-M) 1.4.0, when Profile Small is used, has incorrect access control. NSPE can access a secure key (held by the Crypto service) based solely on knowledge of its key ID. For example, there is no autho...Show more Trusted Firmware-M (TF-M) 1.4.0, when Profile Small is used, has incorrect access control. NSPE can access a secure key (held by the Crypto service) based solely on knowledge of its key ID. For example, there is no authorization check associated with the relationship between a caller and a key owner.Show less
CVE-2021-45450 3Arm FedoraprojectTrustedfirmware 3Fedora Mbed TlsMbed Tls Jun 5, 2026 Dec 21, 2021 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 In Mbed TLS before 2.28.0 and 3.x before 3.1.0, psa_cipher_generate_iv and psa_cipher_encrypt allow policy bypass or oracle-based decryption when the output buffer is at memory locations accessible to an untrusted applic...Show more In Mbed TLS before 2.28.0 and 3.x before 3.1.0, psa_cipher_generate_iv and psa_cipher_encrypt allow policy bypass or oracle-based decryption when the output buffer is at memory locations accessible to an untrusted application.Show less
CVE-2021-44732 3Arm DebianTrustedfirmware 3Debian Linux Mbed TlsMbed Tls Jun 5, 2026 Dec 20, 2021 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 Mbed TLS before 3.0.1 has a double free in certain out-of-memory conditions, as demonstrated by an mbedtls_ssl_set_session() failure.
CVE-2021-44149 2Linaro Trustedfirmware 2Op Tee Op Tee Jun 5, 2026 Dec 7, 2021 N/A· v4 7.8 HIGH· v3 4.6 MEDIUM· v2 An issue was discovered in Trusted Firmware OP-TEE Trusted OS through 3.15.0. The OPTEE-OS CSU driver for NXP i.MX6UL SoC devices lacks security access configuration for wakeup-related registers, resulting in TrustZone b...Show more An issue was discovered in Trusted Firmware OP-TEE Trusted OS through 3.15.0. The OPTEE-OS CSU driver for NXP i.MX6UL SoC devices lacks security access configuration for wakeup-related registers, resulting in TrustZone bypass because the NonSecure World can perform arbitrary memory read/write operations on Secure World memory. This involves a v cycle.Show less
CVE-2021-36133 2Linaro Trustedfirmware 2Op Tee Op Tee Jun 5, 2026 Dec 7, 2021 N/A· v4 7.1 HIGH· v3 3.6 LOW· v2 The OPTEE-OS CSU driver for NXP i.MX SoC devices lacks security access configuration for several models, resulting in TrustZone bypass because the NonSecure World can perform arbitrary memory read/write operations on Sec...Show more The OPTEE-OS CSU driver for NXP i.MX SoC devices lacks security access configuration for several models, resulting in TrustZone bypass because the NonSecure World can perform arbitrary memory read/write operations on Secure World memory. This involves a DMA capable peripheral.Show less
CVE-2019-25052 2Linaro Trustedfirmware 2Op Tee Op Tee Jun 5, 2026 Aug 11, 2021 N/A· v4 9.1 CRITICAL· v3 6.4 MEDIUM· v2 In Linaro OP-TEE before 3.7.0, by using inconsistent or malformed data, it is possible to call update and final cryptographic functions directly, causing a crash that could leak sensitive information.
CVE-2021-27562 2Arm Trustedfirmware 2Trusted Firmware M Trusted Firmware M Jun 5, 2026 May 25, 2021 N/A· v4 5.5 MEDIUM· v3 4.9 MEDIUM· v2 In Arm Trusted Firmware M through 1.2, the NS world may trigger a system halt, an overwrite of secure data, or the printing out of secure data when calling secure functions under the NSPE handler mode.
CVE-2021-32032 2Linaro Trustedfirmware 2Trusted Firmware M Trusted Firmware M Jun 8, 2026 May 21, 2021 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 In Trusted Firmware-M through 1.3.0, cleaning up the memory allocated for a multi-part cryptographic operation (in the event of a failure) can prevent the abort() operation in the associated cryptographic library from fr...Show more In Trusted Firmware-M through 1.3.0, cleaning up the memory allocated for a multi-part cryptographic operation (in the event of a failure) can prevent the abort() operation in the associated cryptographic library from freeing internal resources, causing a memory leak.Show less
CVE-2020-13799 3Linaro TrustedfirmwareWesterndigital 5Inand Cl Em132 Firmware Inand Ix Em132 FirmwareInand Ix Em132 Xi Firmware+2 more Jun 5, 2026 Nov 18, 2020 N/A· v4 6.8 MEDIUM· v3 4.6 MEDIUM· v2 Western Digital has identified a security vulnerability in the Replay Protected Memory Block (RPMB) protocol as specified in multiple standards for storage device interfaces, including all versions of eMMC, UFS, and NVMe...Show more Western Digital has identified a security vulnerability in the Replay Protected Memory Block (RPMB) protocol as specified in multiple standards for storage device interfaces, including all versions of eMMC, UFS, and NVMe. The RPMB protocol is specified by industry standards bodies and is implemented by storage devices from multiple vendors to assist host systems in securing trusted firmware. Several scenarios have been identified in which the RPMB state may be affected by an attacker without the knowledge of the trusted component that uses the RPMB feature.Show less
CVE-2020-10932 4Arm DebianFedoraproject+1 more 4Debian Linux FedoraMbed Tls+1 more Jun 5, 2026 Apr 15, 2020 N/A· v4 4.7 MEDIUM· v3 1.9 LOW· v2 An issue was discovered in Arm Mbed TLS before 2.16.6 and 2.7.x before 2.7.15. An attacker that can get precise enough side-channel measurements can recover the long-term ECDSA private key by (1) reconstructing the proje...Show more An issue was discovered in Arm Mbed TLS before 2.16.6 and 2.7.x before 2.7.15. An attacker that can get precise enough side-channel measurements can recover the long-term ECDSA private key by (1) reconstructing the projective coordinate of the result of scalar multiplication by exploiting side channels in the conversion to affine coordinates; (2) using an attack described by Naccache, Smart, and Stern in 2003 to recover a few bits of the ephemeral scalar from those projective coordinates via several measurements; and (3) using a lattice attack to get from there to the long-term ECDSA private key used for the signatures. Typically an attacker would have sufficient access when attacking an SGX enclave and controlling the untrusted OS.Show less
CVE-2019-16910 4Arm DebianFedoraproject+1 more 5Debian Linux FedoraMbed Crypto+2 more Jun 5, 2026 Sep 26, 2019 N/A· v4 5.3 MEDIUM· v3 2.6 LOW· v2 Arm Mbed TLS before 2.19.0 and Arm Mbed Crypto before 2.0.0, when deterministic ECDSA is enabled, use an RNG with insufficient entropy for blinding, which might allow an attacker to recover a private key via side-channel...Show more Arm Mbed TLS before 2.19.0 and Arm Mbed Crypto before 2.0.0, when deterministic ECDSA is enabled, use an RNG with insufficient entropy for blinding, which might allow an attacker to recover a private key via side-channel attacks if a victim signs the same message many times. (For Mbed TLS, the fix is also available in versions 2.7.12 and 2.16.3.)Show less
CVE-2019-1010292 2Linaro Trustedfirmware 2Op Tee Op Tee Jun 5, 2026 Jul 16, 2019 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 Linaro/OP-TEE OP-TEE Prior to version v3.4.0 is affected by: Boundary checks. The impact is: This could lead to corruption of any memory which the TA can access. The component is: optee_os. The fixed version is: v3.4.0.
CVE-2019-1010298 2Linaro Trustedfirmware 2Op Tee Op Tee Jun 5, 2026 Jul 15, 2019 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 Linaro/OP-TEE OP-TEE 3.3.0 and earlier is affected by: Buffer Overflow. The impact is: Code execution in the context of TEE core (kernel). The component is: optee_os. The fixed version is: 3.4.0 and later.
CVE-2019-1010297 2Linaro Trustedfirmware 2Op Tee Op Tee Jun 5, 2026 Jul 15, 2019 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 Linaro/OP-TEE OP-TEE 3.3.0 and earlier is affected by: Buffer Overflow. The impact is: Execution of code in TEE core (kernel) context. The component is: optee_os. The fixed version is: 3.4.0 and later.
CVE-2019-1010296 2Linaro Trustedfirmware 2Op Tee Op Tee Jun 5, 2026 Jul 15, 2019 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 Linaro/OP-TEE OP-TEE 3.3.0 and earlier is affected by: Buffer Overflow. The impact is: Code execution in context of TEE core (kernel). The component is: optee_os. The fixed version is: 3.4.0 and later.
CVE-2019-1010295 2Linaro Trustedfirmware 2Op Tee Op Tee Jun 5, 2026 Jul 15, 2019 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 Linaro/OP-TEE OP-TEE 3.3.0 and earlier is affected by: Buffer Overflow. The impact is: Memory corruption and disclosure of memory content. The component is: optee_os. The fixed version is: 3.4.0 and later.

Previous 1 234 Next