Andrea Barisani

3 exploits Active since Jul 2001
CVE-2021-36133 WRITEUP HIGH WRITEUP
OPTEE-OS CSU - Privilege Escalation
The OPTEE-OS CSU driver for NXP i.MX SoC devices lacks security access configuration for several models, resulting in TrustZone bypass because the NonSecure World can perform arbitrary memory read/write operations on Secure World memory. This involves a DMA capable peripheral.
CVSS 7.1
CVE-2021-44149 WRITEUP HIGH WRITEUP
Trusted Firmware OP-TEE Trusted OS <3.15.0 - Privilege Escalation
An issue was discovered in Trusted Firmware OP-TEE Trusted OS through 3.15.0. The OPTEE-OS CSU driver for NXP i.MX6UL SoC devices lacks security access configuration for wakeup-related registers, resulting in TrustZone bypass because the NonSecure World can perform arbitrary memory read/write operations on Secure World memory. This involves a v cycle.
CVSS 7.8
CVE-2001-1075 EXPLOITDB text WORKING POC
Cobalt RaQ3 <2.0 - Auth Bypass
poprelayd script before 2.0 in Cobalt RaQ3 servers allows remote attackers to bypass authentication for relaying by causing a "POP login by user" string that includes the attacker's IP address to be injected into the maillog log file.