How severe is CVE-2024-6285?

CVE-2024-6285 has a CVSS v3 score of 7.5 (HIGH).

CVE-2024-6285

Name: rcar_gen3
Author: renesas

7.5HIGH

Integer Underflow (Wrap or Wraparound) vulnerability in Renesas arm-trusted-firmware. An integer underflow in image range check calculations could lead to bypassing address restrictions and loading of

Publicado: 6/24/2024Actualizado: 11/21/2024

Descripción

Integer Underflow (Wrap or Wraparound) vulnerability in Renesas arm-trusted-firmware. An integer underflow in image range check calculations could lead to bypassing address restrictions and loading of images to unallowed addresses.

Análisis IAImpulsado por IA

Productos Afectados

renesasrcar_gen3

v2.5

Referencias

https://asrg.io/security-advisories/cve-2024-6285/
Third Party Advisory
https://github.com/renesas-rcar/arm-trusted-firmware/commit/b596f580637bae919b0ac3a5471422a1f756db3b
Patch
https://asrg.io/security-advisories/cve-2024-6285/
Third Party Advisory
https://github.com/renesas-rcar/arm-trusted-firmware/commit/b596f580637bae919b0ac3a5471422a1f756db3b
Patch