Out-of-Bounds Read Vulnerability in Trusted Firmware-A by ARM Software
CVE-2023-49100
Currently unrated
What is CVE-2023-49100?
An out-of-bounds read vulnerability exists in the Trusted Firmware-A (TF-A) prior to version 2.10 due to insufficient validation of input parameters in the SDEI service. Specifically, the function sdei_interrupt_bind mishandles the input parameter in register x1, allowing unvalidated values to be passed to plat_ic_get_interrupt_type. This weakness can enable a malicious user with kernel access to exploit this flaw, potentially crashing TF-A by controlling registers x0 to x6 through arbitrary SMC calls. Although the vulnerability does not facilitate read leaks to non-secure memory, its exploitation can lead to stability issues within TF-A, thus posing a significant risk to system integrity.