Vulnerabilities > Trusted Boot Project

DATE CVE VULNERABILITY TITLE RISK
2019-11-18 CVE-2014-5118 Improper Input Validation vulnerability in multiple products
Trusted Boot (tboot) before 1.8.2 has a 'loader.c' Security Bypass Vulnerability
5.5
2017-11-16 CVE-2017-16837 Improper Input Validation vulnerability in Trusted Boot Project Trusted Boot 1.9.6
Certain function pointers in Trusted Boot (tboot) through 1.9.6 are not validated and can cause arbitrary code execution, which allows local users to overwrite dynamic PCRs of Trusted Platform Module (TPM) by hooking these function pointers.
local
low complexity
trusted-boot-project CWE-20
7.8