Chli

**Name of the Vulnerable Software and Affected Versions** SCP-Firmware versions up to and including 2.15.0 **Description** Specifically crafted SCMI messages sent to an SCP may lead to a Usage Fault and crash the SCP. **Recommendations** For SCP-Firmware versions up to and including 2.15.0, consider restricting or disabling the handling of SCMI messages until a patch is available.

**Name of the Vulnerable Software and Affected Versions** SCP-Firmware versions up to and including 2.15.0 **Description** Specifically crafted SCMI messages sent to an SCP may lead to a Usage Fault and crash the SCP. **Recommendations** For versions up to and including 2.15.0, update to a version later than 2.15.0 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** SCP-Firmware versions 2.11.0 through 2.15.0 **Description** The issue arises from the `transport message handler` function not properly handling errors, which could allow an Application Processor (AP) to cause a buffer overflow in System Control Processor (SCP) firmware. **Recommendations** For SCP-Firmware versions 2.11.0 through 2.15.0, consider disabling the `transport message handler` function until a patch is available to prevent potential buffer overflow exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.