cbcvebase.
CVE-2023-51712
published 2024-09-05

CVE-2023-51712: An issue was discovered in Trusted Firmware-M through 2.0.0. The lack of argument verification in the logging subsystem allows attackers to read sensitive data…

PriorityP417medium4.7CVSS 3.1
AVPACHPRHUINSCCHINAN
EPSS
0.29%
20.9th percentile
An issue was discovered in Trusted Firmware-M through 2.0.0. The lack of argument verification in the logging subsystem allows attackers to read sensitive data via the login function.

Affected

2 ranges
VendorProductVersion rangeFixed in
debianarm-trusted-firmware
trustedfirmwaretrusted_firmware-m<= 2.0.0

CVSS provenance

nvdv3.14.7MEDIUMCVSS:3.1/AV:P/AC:H/PR:H/UI:N/S:C/C:H/I:N/A:N
vendor_debian4.7LOW
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.