41 known vulnerabilities · sorted by CVSS score
Memory corruption in Core Services while executing the command for removing a single event listener.
Memory corruption in Hypervisor when platform information mentioned is not aligned.
Memory corruption in TZ Secure OS while Tunnel Invoke Manager initialization.
Memory corruption while configuring a Hypervisor based input virtual device.
Memory corruption when size of buffer from previous call is used without validation or re-initialization.
Memory corruption while invoking the SubmitCommands call on Gfx engine during the graphics render.
Memory corruption while processing finish_sign command to pass a rsp buffer.
Memory corruption while loading a VM from a signed VM image that is not coherent in the processor cache.
Memory corruption while allocating memory for graphics.
Memory corruption while creating a LPAC client as LPAC engine was allowed to access GPU registers.
Memory corruption in SPS Application while requesting for public key in sorter TA.
Memory corruption during memory assignment to headless peripheral VM due to incorrect error code handling.
Memory corruption while processing image encoding, when input buffer length is 0 in IOCTL call.
Memory corruption during the image encoding process.
Memory corruption when IOCTL call is invoked from user-space to read board data.
Memory corruption when the channel ID passed by user is not validated and further used.
Memory corruption while retrieving the CBOR data from TA.
Memory corruption while processing escape code, when DisplayId is passed with large unsigned value.
Memory corruption when IOCTL call is invoked from user-space to write board data to WLAN driver.
Memory corruption while triggering commands in the PlayReady Trusted application.