CVE-2021-27562CISA KEV: Actively Exploited

Arm Trusted Firmware Out-of-Bounds Write Vulnerability

Published Nov 3, 2021·Updated Nov 3, 2021

Description

Arm Trusted Firmware contains an out-of-bounds write vulnerability allowing the non-secure (NS) world to trigger a system halt, overwrite secure data, or print out secure data when calling secure functions under the non-secure processing environment (NSPE) handler mode. This vulnerability affects Yealink Device Management servers.

References

View on NVD Search GitHub Search Google

Get alerted for CVEs like this

Register your stack and get notified within minutes when a matching CVE drops.

Start monitoring free