CVE-2025-46733
- EPSS 0.02%
- Veröffentlicht 04.07.2025 13:13:53
- Zuletzt bearbeitet 08.07.2025 16:18:53
OP-TEE is a Trusted Execution Environment (TEE) designed as companion to a non-secure Linux kernel running on Arm; Cortex-A cores using the TrustZone technology. In version 4.5.0, using a specially crafted tee-supplicant binary running in REE userspa...
CVE-2022-46152
- EPSS 0.37%
- Veröffentlicht 29.11.2022 17:15:11
- Zuletzt bearbeitet 21.11.2024 07:30:12
OP-TEE Trusted OS is the secure side implementation of OP-TEE project, a Trusted Execution Environment. Versions prior to 3.19.0, contain an Improper Validation of Array Index vulnerability. The function `cleanup_shm_refs()` is called by both `entry_...
CVE-2016-6129
- EPSS 0.15%
- Veröffentlicht 13.02.2017 18:59:00
- Zuletzt bearbeitet 20.04.2025 01:37:25
The rsa_verify_hash_ex function in rsa_verify_hash.c in LibTomCrypt, as used in OP-TEE before 2.2.0, does not validate that the message length is equal to the ASN.1 encoded data length, which makes it easier for remote attackers to forge RSA signatur...