How severe is CVE-2024-6285?

CVE-2024-6285 has a CVSS v3 score of 7.5 (HIGH).

CVE-2024-6285

Name: rcar_gen3
Author: renesas

7.5HIGH

Integer Underflow (Wrap or Wraparound) vulnerability in Renesas arm-trusted-firmware. An integer underflow in image range check calculations could lead to bypassing address restrictions and loading of

发布于: 6/24/2024更新于: 11/21/2024

描述

Integer Underflow (Wrap or Wraparound) vulnerability in Renesas arm-trusted-firmware. An integer underflow in image range check calculations could lead to bypassing address restrictions and loading of images to unallowed addresses.

AI分析AI驱动

受影响产品

renesasrcar_gen3

v2.5

参考资料

https://asrg.io/security-advisories/cve-2024-6285/
Third Party Advisory
https://github.com/renesas-rcar/arm-trusted-firmware/commit/b596f580637bae919b0ac3a5471422a1f756db3b
Patch
https://asrg.io/security-advisories/cve-2024-6285/
Third Party Advisory
https://github.com/renesas-rcar/arm-trusted-firmware/commit/b596f580637bae919b0ac3a5471422a1f756db3b
Patch