Vulnerabilities > Linaro > Critical

DATE CVE VULNERABILITY TITLE RISK
2022-11-18 CVE-2022-45132 Code Injection vulnerability in Linaro Lava
In Linaro Automated Validation Architecture (LAVA) before 2022.11.1, remote code execution can be achieved through user-submitted Jinja2 template.
network
low complexity
linaro CWE-94
critical
 9.8
9.8
2021-08-11 CVE-2019-25052 Use of a Broken or Risky Cryptographic Algorithm vulnerability in Linaro Op-Tee
In Linaro OP-TEE before 3.7.0, by using inconsistent or malformed data, it is possible to call update and final cryptographic functions directly, causing a crash that could leak sensitive information.
network
low complexity
linaro CWE-327
critical
 9.1
9.1
2019-07-16 CVE-2019-1010292 Out-of-bounds Write vulnerability in Linaro Op-Tee
Linaro/OP-TEE OP-TEE Prior to version v3.4.0 is affected by: Boundary checks.
network
low complexity
linaro CWE-787
critical
 9.8
9.8
2019-07-15 CVE-2019-1010298 Integer Overflow or Wraparound vulnerability in Linaro Op-Tee
Linaro/OP-TEE OP-TEE 3.3.0 and earlier is affected by: Buffer Overflow.
network
low complexity
linaro CWE-190
critical
 9.8
9.8
2019-07-15 CVE-2019-1010297 Integer Overflow or Wraparound vulnerability in Linaro Op-Tee
Linaro/OP-TEE OP-TEE 3.3.0 and earlier is affected by: Buffer Overflow.
network
low complexity
linaro CWE-190
critical
 9.8
9.8
2019-07-15 CVE-2019-1010296 Integer Overflow or Wraparound vulnerability in Linaro Op-Tee
Linaro/OP-TEE OP-TEE 3.3.0 and earlier is affected by: Buffer Overflow.
network
low complexity
linaro CWE-190
critical
 9.8
9.8
2019-07-15 CVE-2019-1010295 Out-of-bounds Write vulnerability in Linaro Op-Tee
Linaro/OP-TEE OP-TEE 3.3.0 and earlier is affected by: Buffer Overflow.
network
low complexity
linaro CWE-787
critical
 9.8
9.8
2019-07-15 CVE-2019-1010293 Out-of-bounds Write vulnerability in Linaro Op-Tee
Linaro/OP-TEE OP-TEE 3.3.0 and earlier is affected by: Boundary crossing.
network
low complexity
linaro CWE-787
critical
 9.8
9.8