CVE Tools

trustedfirmware

Security Productscommercial

31

Cumulative CVEs

6

Monthly snapshots

#63

Peak rank

Top products

Latest CVEs

The 15 most recently published vulnerabilities affecting trustedfirmware.

CVE-2026-45702OP-TEE has FF-A type confusion in SPMC tmem path that causes S-EL1 kernel panic4.4Jun 3, 2026
CVE-2026-45614OP-TEE vulnerable to ECDH private key recovery4.7Jun 3, 2026
CVE-2026-40290OP-TEE has a Use-After-Free race in FF-A shared-memory teardown7.8Jun 3, 2026
CVE-2026-33662OP-TEE: RSASSA EMSA- PKCS1-v1_5 underflow in emsa_pkcs1_v1_5_encode()7.5Apr 24, 2026
CVE-2026-33317OP-TEE: PKCS#11 TA out-of-bounds read and memory disclosure8.7Apr 24, 2026
CVE-2026-34877An issue was discovered in Mbed TLS versions from 2.19.0 up to 3.6.5, Mbed TLS 4.0.0. Insufficient protection of serialized SSL context or session structures allows an attacker who can modify the s...9.8Apr 2, 2026
CVE-2026-34876An issue was discovered in Mbed TLS 3.x before 3.6.6. An out-of-bounds read vulnerability in mbedtls_ccm_finish() in library/ccm.c allows attackers to obtain adjacent CCM context data via invocatio...7.5Apr 2, 2026
CVE-2026-34875An issue was discovered in Mbed TLS through 3.6.5 and TF-PSA-Crypto 1.0.0. A buffer overflow can occur in public key export for FFDH keys.9.8Apr 1, 2026
CVE-2026-34874An issue was discovered in Mbed TLS through 3.6.5 and 4.x through 4.0.0. There is a NULL pointer dereference in distinguished name parsing that allows an attacker to write to address 0.7.5Apr 1, 2026
CVE-2026-34873An issue was discovered in Mbed TLS 3.5.0 through 4.0.0. Client impersonation can occur while resuming a TLS 1.3 session.9.1Apr 1, 2026
CVE-2026-34871An issue was discovered in Mbed TLS before 3.6.6 and 4.x before 4.1.0 and TF-PSA-Crypto before 1.1.0. There is a Predictable Seed in a Pseudo-Random Number Generator (PRNG).6.7Apr 1, 2026
CVE-2026-25835Mbed TLS before 3.6.6 and TF-PSA-Crypto before 1.1.0 misuse seeds in a Pseudo-Random Number Generator (PRNG).7.7Apr 1, 2026
CVE-2026-25834Mbed TLS v3.3.0 up to 3.6.5 and 4.0.0 allows Algorithm Downgrade.6.5Apr 1, 2026
CVE-2026-25833Mbed TLS 3.5.0 to 3.6.5 fixed in 3.6.6 and 4.1.0 has a buffer overflow in the x509_inet_pton_ipv6() function7.5Apr 1, 2026
CVE-2025-49087In Mbed TLS 3.6.1 through 3.6.3 before 3.6.4, a timing discrepancy in block cipher padding removal allows an attacker to recover the plaintext when PKCS#7 padding mode is used.4.0Jul 20, 2025