CNNVD-202507-438 Information

CNNVD ID

CNNVD-202507-438

Related CVE

CVE-2025-46733

• CNNVD Published: 2025-07-04

Description (Chinese)

OP-TEE Trusted OS是OP-TEE开源的一个实现 Arm TrustZone 技术的开源可信执行环境（TEE）。 OP-TEE Trusted OS 4.5.0版本存在安全漏洞，该漏洞源于Secure Storage API返回码未验证，可能导致TA崩溃。

Description (English)

OP-TEE Trusted OS is an open-source implementation environment (TEE) for the realization of Arm TrustZone technology. Version 4.5.0 of OP-TEE Trusted OS has a security loophole, which originates from the unverified return code of the SecureStorage API, which could cause the TA to collapse.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

OP-TEE

Published

2025-07-04

Last Modified

2026-02-24

References

https://github.com/OP-TEE/optee_os/commit/941a58d78c99c4754fbd4ec3079ec9e1d596af8f https://github.com/OP-TEE/optee_os/security/advisories/GHSA-f35r-hm2m-p6c3 https://access.redhat.com/security/cve/cve-2025-46733