CVE-2018-1000205
N/A
N/A
Summary
U-Boot contains a CWE-20: Improper Input Validation vulnerability in Verified boot signature validation that can result in Bypass verified boot. This attack appear to be exploitable via Specially crafted FIT image and special device memory functionality.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- https://lists.denx.de/pipermail/u-boot/2018-June/330454.html
- https://lists.denx.de/pipermail/u-boot/2018-June/330898.html
References
- https://lists.denx.de/pipermail/u-boot/2018-June/330454.html
- https://lists.denx.de/pipermail/u-boot/2018-June/330898.html
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.