Vulnerabilities > CVE-2021-36357 - Incorrect Conversion between Numeric Types vulnerability in Openpowerfoundation Skiboot 2.6

CVSS 9.8 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

openpowerfoundation

CWE-681

critical

NVD

Published: 2021-10-22

Updated: 2024-11-21

Summary

An issue was discovered in OpenPOWER 2.6 firmware. unpack_timestamp() calls le32_to_cpu() for endian conversion of a uint16_t "year" value, resulting in a type mismatch that can truncate a higher integer value to a smaller one, and bypass a timestamp check. The fix is to use the right endian conversion function.

Vulnerable Configurations

Part	Description	Count
OS	Openpowerfoundation Openpowerfoundation Skiboot 2.6	1

Common Weakness Enumeration (CWE)

CWE-681 - Incorrect Conversion between Numeric Types

References

https://github.com/open-power/skiboot/commit/5be38b672c1410e2f10acd3ad2eecfdc81d5daf7
https://github.com/open-power/skiboot/commit/5be38b672c1410e2f10acd3ad2eecfdc81d5daf7