CVE-2021-36133

Published Dec 7, 2021

Last updated 3 years ago

CVSS high 7.1

Overview

Description: The OPTEE-OS CSU driver for NXP i.MX SoC devices lacks security access configuration for several models, resulting in TrustZone bypass because the NonSecure World can perform arbitrary memory read/write operations on Secure World memory. This involves a DMA capable peripheral.
Source: cve@mitre.org
NVD status: Analyzed

Risk scores

CVSS 3.1

Type: Primary
Base score: 7.1
Impact score: 5.2
Exploitability score: 1.8
Vector string: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
Severity: HIGH

CVSS 2.0

Type: Primary
Base score: 3.6
Impact score: 4.9
Exploitability score: 3.9
Vector string: AV:L/AC:L/Au:N/C:P/I:P/A:N

Weaknesses

nvd@nist.gov: CWE-732

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:linaro:op-tee:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4F8D35B9-CF81-4539-A691-DF6ABA515B92"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:nxp:i.mx_6:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "1B3D9F06-FBAB-4271-81AF-D135995BC7CB"
          },
          {
            "criteria": "cpe:2.3:h:nxp:i.mx_6solox:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "71631A11-FB49-4335-BB1B-47EB9061F47B"
          },
          {
            "criteria": "cpe:2.3:h:nxp:i.mx_6ull:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "E2CD0D2A-C1A5-4771-ADAB-70375BF06670"
          },
          {
            "criteria": "cpe:2.3:h:nxp:i.mx_6ulz:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "38EB61DF-AE1E-4073-89F3-86194D2B8C82"
          },
          {
            "criteria": "cpe:2.3:h:nxp:i.mx_7ds:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "03B83613-161E-4AF4-B828-17821B868138"
          },
          {
            "criteria": "cpe:2.3:h:nxp:i.mx6sx:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "62F22874-A623-4705-B8B7-A0C7E1BDA705"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  }
]

Overview

Risk scores

CVSS 3.1

CVSS 2.0

Weaknesses

Social media

Configurations

References