Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
TrustedFirmware-M (aka Trusted Firmware for M profile Arm CPUs) before 2.1.3 and 2.2.x before 2.2.1 lacks length validation during a firmware upgrade. While processing a new image, the Firmware Upgrade (FWU) module does not validate the length field of the Type-Length-Value (TLV) structure for dependent components against the maximum allowed size. If the length specified in the TLV exceeds the size of the buffer allocated on the stack, the FWU module will overwrite the buffer (and potentially other stack data) with the TLV's value content. An attacker could exploit this by crafting a malicious TLV entry in the unprotected section of the MCUBoot upgrade image. By setting the length field to exceed the expected structure size, the attacker can manipulate the stack memory of the system during the upgrade process.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
TrustedFirmware-M 安全漏洞
Vulnerability Description
TrustedFirmware-M是英国TrustedFirmware开源的一款微控制器的固件系统。 TrustedFirmware-M 2.1.3之前版本和2.2.1之前版本存在安全漏洞,该漏洞源于固件升级期间长度验证不足,可能导致缓冲区溢出。
CVSS Information
N/A
Vulnerability Type
N/A