Vulnerabilities > CVE-2021-36357 - Incorrect Conversion between Numeric Types vulnerability in Openpowerfoundation Skiboot 2.6

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

low complexity

openpowerfoundation

CWE-681

NVD

Published: 2021-10-22

Updated: 2021-10-27

Summary

An issue was discovered in OpenPOWER 2.6 firmware. unpack_timestamp() calls le32_to_cpu() for endian conversion of a uint16_t "year" value, resulting in a type mismatch that can truncate a higher integer value to a smaller one, and bypass a timestamp check. The fix is to use the right endian conversion function.

Vulnerable Configurations

Part	Description	Count
OS	Openpowerfoundation Openpowerfoundation Skiboot 2.6	1

Common Weakness Enumeration (CWE)

CWE-681 - Incorrect Conversion between Numeric Types

References

https://github.com/open-power/skiboot/commit/5be38b672c1410e2f10acd3ad2eecfdc81d5daf7