Vulnerabilities > Linaro > Critical

DATE CVE VULNERABILITY TITLE RISK
2022-11-18 CVE-2022-45132 Code Injection vulnerability in Linaro Lava
In Linaro Automated Validation Architecture (LAVA) before 2022.11.1, remote code execution can be achieved through user-submitted Jinja2 template.
network
low complexity
linaro CWE-94
critical
 9.8
9.8
2019-07-15 CVE-2019-1010298 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Linaro Op-Tee
Linaro/OP-TEE OP-TEE 3.3.0 and earlier is affected by: Buffer Overflow.
network
low complexity
linaro CWE-119
critical
 10.0
10
2019-07-15 CVE-2019-1010297 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Linaro Op-Tee
Linaro/OP-TEE OP-TEE 3.3.0 and earlier is affected by: Buffer Overflow.
network
low complexity
linaro CWE-119
critical
 10.0
10
2019-07-15 CVE-2019-1010296 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Linaro Op-Tee
Linaro/OP-TEE OP-TEE 3.3.0 and earlier is affected by: Buffer Overflow.
network
low complexity
linaro CWE-119
critical
 10.0
10