CVE-2019-1010292

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions: Linaro/OP-TEE OP-TEE versions prior to v3.4.0

Description: The issue is related to boundary checks in the optee os component. This could lead to corruption of any memory that the TA can access.

Recommendations: For versions prior to v3.4.0, update to version v3.4.0 to resolve the issue. As a temporary workaround, consider restricting access to sensitive memory areas to minimize the risk of exploitation.

Fix

Memory Corruption

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-787

Related Identifiers

CVE-2019-1010292

Affected Products

Op-Tee

CVE-2019-1010292

Weakness Enumeration

Related Identifiers

Affected Products

References · 4