CVE-2024-6287

Name of the Vulnerable Software and Affected Versions: Renesas arm-trusted-firmware (affected versions not specified)

Description: The issue arises from an incorrect calculation in the code that checks for image overlap with previously loaded images. This oversight allows an attacker to bypass memory range restrictions, potentially overwriting an already loaded image partly or completely. As a result, this could lead to code execution and bypass of secure boot mechanisms.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.