CVE-2016-10319 in Trusted Firmwareinfo

Summary

In ARM Trusted Firmware 1.2 and 1.3, a malformed firmware update SMC can result in copying unexpectedly large data into secure memory because of integer overflows. This affects certain cases involving execution of both AArch64 Generic Trusted Firmware (TF) BL1 code and other firmware update code.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Reservation

04/06/2017

Disclosure

04/06/2017

Moderation

VulDB entry created

Entries

CPE

ready

CWE

CWE-190 (Confirmed)

CVSS

6.6

EPSS

0.00439

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2016-10319
NVD	https://nvd.nist.gov/vuln/detail/CVE-2016-10319
CVE Details	https://www.cvedetails.com/cve/CVE-2016-10319/

◂ Previous Overview Next ▸

Might our Artificial Intelligence support you?

Check our Alexa App!