Renesas Arm-trusted-firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Renesas Arm-trusted-firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2024-6563 — CVSS 7.5 (high): Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') vulnerability in Renesas arm-trusted-firmware allows Local Execution…
CVE-2024-6564 — CVSS 6.7 (medium): Buffer overflow in "rcar_dev_init" due to using due to using untrusted data (rcar_image_number) as a loop counter before verifying it…
CVE-2024-1633 — CVSS 2.0 (low): During the secure boot, bl2 (the second stage of the bootloader) loops over images defined in the table “bl2_mem_params_descs”. For…