How severe is CVE-2024-6285?

CVE-2024-6285 has a CVSS v3 score of 7.5 (HIGH).

CVE-2024-6285

Name: rcar_gen3
Author: renesas

7.5HIGH

Integer Underflow (Wrap or Wraparound) vulnerability in Renesas arm-trusted-firmware. An integer underflow in image range check calculations could lead to bypassing address restrictions and loading of

公開日: 6/24/2024更新日: 11/21/2024

説明

Integer Underflow (Wrap or Wraparound) vulnerability in Renesas arm-trusted-firmware. An integer underflow in image range check calculations could lead to bypassing address restrictions and loading of images to unallowed addresses.

AI分析AIによる分析

影響を受ける製品

renesasrcar_gen3

v2.5

参照

https://asrg.io/security-advisories/cve-2024-6285/
Third Party Advisory
https://github.com/renesas-rcar/arm-trusted-firmware/commit/b596f580637bae919b0ac3a5471422a1f756db3b
Patch
https://asrg.io/security-advisories/cve-2024-6285/
Third Party Advisory
https://github.com/renesas-rcar/arm-trusted-firmware/commit/b596f580637bae919b0ac3a5471422a1f756db3b
Patch