Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-34877 |
|
Vulnerability in arm (CVE-2026-34877)
vulnerability in arm (CVE-2026-34877). Successful exploitation can lead to full system takeover.
|
| CVE-2026-34876 |
|
Out-of-Bounds Read in c (CVE-2026-34876)
vulnerability in c (CVE-2026-34876). Confidential information can be exposed externally.
|
| CVE-2026-34873 |
|
Authentication Bypass in trustedfirmware (CVE-2026-34873)
authentication bypass in trustedfirmware (CVE-2026-34873). Confidential information can be exposed externally.
|
| CVE-2026-34874 |
|
Vulnerability in trustedfirmware (CVE-2026-34874)
vulnerability in trustedfirmware (CVE-2026-34874). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-34871 |
|
Vulnerability in arm (CVE-2026-34871)
vulnerability in arm (CVE-2026-34871). Confidential information can be exposed externally.
|
| CVE-2026-25835 |
|
Vulnerability in arm (CVE-2026-25835)
vulnerability in arm (CVE-2026-25835). Confidential information can be exposed externally.
|
| CVE-2026-25833 |
|
Vulnerability in trustedfirmware (CVE-2026-25833)
vulnerability in trustedfirmware (CVE-2026-25833). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `3.6.6` or later.
|
| CVE-2026-34875 |
|
Vulnerability in trustedfirmware (CVE-2026-34875)
vulnerability in trustedfirmware (CVE-2026-34875). Successful exploitation can lead to full system takeover.
|
| CVE-2026-25834 |
|
Mbed TLS v3.3.0 up to 3.6.5 and 4.0.0 allows Algorithm Downgrade.
Mbed TLS v3.3.0 up to 3.6.5 and 4.0.0 allows Algorithm Downgrade.
|
| CVE-2025-49087 |
|
Vulnerability in trustedfirmware (CVE-2025-49087)
vulnerability in trustedfirmware (CVE-2025-49087). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-49601 |
|
Out-of-Bounds Read in trustedfirmware (CVE-2025-49601)
vulnerability in trustedfirmware (CVE-2025-49601). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-49600 |
|
Vulnerability in trustedfirmware (CVE-2025-49600)
vulnerability in trustedfirmware (CVE-2025-49600). Data can be tampered with by attackers.
|
| CVE-2025-27810 |
|
Vulnerability in arm (CVE-2025-27810)
vulnerability in arm (CVE-2025-27810). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-27809 |
|
Vulnerability in arm (CVE-2025-27809)
vulnerability in arm (CVE-2025-27809). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-49195 |
|
Out-of-Bounds Write in trustedfirmware (CVE-2024-49195)
out-of-bounds write in trustedfirmware (CVE-2024-49195). Successful exploitation can lead to full system takeover.
|
| CVE-2024-45159 |
|
Vulnerability in trustedfirmware (CVE-2024-45159)
vulnerability in trustedfirmware (CVE-2024-45159). Successful exploitation can lead to full system takeover.
|
| CVE-2024-45158 |
|
Vulnerability in trustedfirmware (CVE-2024-45158)
vulnerability in trustedfirmware (CVE-2024-45158). Successful exploitation can lead to full system takeover.
|
| CVE-2024-45157 |
|
Vulnerability in trustedfirmware (CVE-2024-45157)
vulnerability in trustedfirmware (CVE-2024-45157). Confidential information can be exposed externally.
|
| CVE-2024-30166 |
|
Vulnerability in dos (CVE-2024-30166)
vulnerability in dos (CVE-2024-30166). Confidential information can be exposed externally.
|
| CVE-2024-28836 |
|
Vulnerability in dos (CVE-2024-28836)
vulnerability in dos (CVE-2024-28836). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-28755 |
|
Vulnerability in dos (CVE-2024-28755)
vulnerability in dos (CVE-2024-28755). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-28960 |
|
An issue was discovered in Mbed TLS 2.18.0 through 2.28.x before 2.28.8 and 3.x before 3.6.0, and Mbed Crypto. The PSA Crypto API mishandles shared memory.
An issue was discovered in Mbed TLS 2.18.0 through 2.28.x before 2.28.8 and 3.x before 3.6.0, and Mbed Crypto. The PSA Crypto API mishandles shared memory.
|
| CVE-2024-23775 |
|
Vulnerability in dos (CVE-2024-23775)
vulnerability in dos (CVE-2024-23775). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-23170 |
|
Vulnerability in arm (CVE-2024-23170)
vulnerability in arm (CVE-2024-23170). Confidential information can be exposed externally.
|
| CVE-2024-23744 |
|
Vulnerability in trustedfirmware (CVE-2024-23744)
vulnerability in trustedfirmware (CVE-2024-23744). Risk of unauthorized operations or information disclosure.
|
| CVE-2023-45199 |
|
Vulnerability in trustedfirmware (CVE-2023-45199)
vulnerability in trustedfirmware (CVE-2023-45199). Successful exploitation can lead to full system takeover.
|
| CVE-2023-43615 |
|
Mbed TLS 2.x before 2.28.5 and 3.x before 3.5.0 has a Buffer Overflow.
Mbed TLS 2.x before 2.28.5 and 3.x before 3.5.0 has a Buffer Overflow.
|
| CVE-2021-36647 |
|
Vulnerability in c (CVE-2021-36647)
vulnerability in c (CVE-2021-36647). Confidential information can be exposed externally.
|
| CVE-2022-46393 |
|
Out-of-Bounds Read in arm (CVE-2022-46393)
vulnerability in arm (CVE-2022-46393). Successful exploitation can lead to full system takeover.
|
| CVE-2022-46392 |
|
Vulnerability in arm (CVE-2022-46392)
vulnerability in arm (CVE-2022-46392). Confidential information can be exposed externally.
|
| CVE-2022-35409 |
|
Out-of-Bounds Read in arm (CVE-2022-35409)
vulnerability in arm (CVE-2022-35409). Confidential information can be exposed externally.
|
| CVE-2021-45450 |
|
Vulnerability in trustedfirmware (CVE-2021-45450)
vulnerability in trustedfirmware (CVE-2021-45450). Confidential information can be exposed externally.
|
| CVE-2021-44732 |
|
Vulnerability in arm (CVE-2021-44732)
vulnerability in arm (CVE-2021-44732). Successful exploitation can lead to full system takeover.
|
| CVE-2020-10932 |
|
Vulnerability in arm (CVE-2020-10932)
vulnerability in arm (CVE-2020-10932). Confidential information can be exposed externally.
|
| CVE-2019-16910 |
|
Information Disclosure in arm (CVE-2019-16910)
vulnerability in arm (CVE-2019-16910). Confidential information can be exposed externally.
|
| CVE-2018-19608 |
|
Privilege Escalation in arm (CVE-2018-19608)
vulnerability in arm (CVE-2018-19608). Confidential information can be exposed externally.
|
| CVE-2018-9989 |
|
Out-of-Bounds Read in arm (CVE-2018-9989)
vulnerability in arm (CVE-2018-9989). Risk of unauthorized operations or information disclosure.
|
| CVE-2018-9988 |
|
Out-of-Bounds Read in arm (CVE-2018-9988)
vulnerability in arm (CVE-2018-9988). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-14032 |
|
Authentication Bypass in arm (CVE-2017-14032)
authentication bypass in arm (CVE-2017-14032). Successful exploitation can lead to full system takeover.
|
| CVE-2017-2784 |
|
Vulnerability in arm (CVE-2017-2784)
vulnerability in arm (CVE-2017-2784). Successful exploitation can lead to full system takeover.
|
| CVE-2015-8036 |
|
Buffer Overflow in dos (CVE-2015-8036)
vulnerability in dos (CVE-2015-8036). Risk of unauthorized operations or information disclosure.
|
| CVE-2015-5291 |
|
Buffer Overflow in dos (CVE-2015-5291)
vulnerability in dos (CVE-2015-5291). Risk of unauthorized operations or information disclosure.
|