Buffer Overflow Vulnerability in Das U-Boot by Denx Software Engineering
CVE-2022-30790

7.8HIGH

Key Information:

Vendor: Denx
Status: U-boot
Vendor: CVE Published:; 8 June 2022

What is CVE-2022-30790?

Das U-Boot 2022.01 is impacted by a buffer overflow vulnerability that could potentially allow an attacker to exploit the system's memory. This vulnerability is distinct from other identified issues in the software, specifically CVE-2022-30552, emphasizing the need for prompt security assessments and updates to safeguard affected systems.

References

https://github.com/u-boot/u-boot/tags

x_refsource_MISC

https://research.nccgroup.com/2022/06/03/technical-adviso...

x_refsource_MISC

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 8, 2022
Vulnerability Reserved
May 16, 2022

CVE-2022-30790 Data

JSON