CVE-2017-9607
Last modified
CVE-2017-9607 is a high-severity vulnerability rated 7/10 on the CVSS scale. The BL1 FWU SMC handling code in ARM Trusted Firmware before 1.4 might allow attackers to write arbitrary data to secure memory, bypass the bl1_plat_mem_check protection mechanism, cause a denial of service, or possibly have unspecified other impact via a crafted AArch32 image, which triggers an integer overflow.. EPSS estimates a 0.79% chance of exploitation in the next 30 days.
Description
The BL1 FWU SMC handling code in ARM Trusted Firmware before 1.4 might allow attackers to write arbitrary data to secure memory, bypass the bl1_plat_mem_check protection mechanism, cause a denial of service, or possibly have unspecified other impact via a crafted AArch32 image, which triggers an integer overflow.
Metrics
CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Trustedfirmware | Trusted Firmware-A | <= 1.3 |
References
- https://github.com/ARM-software/arm-trusted-firmware/blob/v1.4/docs/change-log.rst#new-featuresIssue Tracking, Patch, Release Notes, Third Party Advisory
- https://github.com/ARM-software/arm-trusted-firmware/wiki/ARM-Trusted-Firmware-Security-Advisory-TFV-4Issue Tracking, Patch, Third Party Advisory
- https://github.com/ARM-software/arm-trusted-firmware/blob/v1.4/docs/change-log.rst#new-featuresIssue Tracking, Patch, Release Notes, Third Party Advisory
- https://github.com/ARM-software/arm-trusted-firmware/wiki/ARM-Trusted-Firmware-Security-Advisory-TFV-4Issue Tracking, Patch, Third Party Advisory
Timeline
- Published
- Last Modified
- Status
- Analyzed
Frequently Asked Questions
What is CVE-2017-9607?
How severe is CVE-2017-9607?
How do I fix CVE-2017-9607?
Are you affected by CVE-2017-9607?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST