Simon Glass

3 exploits Active since Feb 2021
CVE-2026-46728 WRITEUP HIGH WRITEUP
U-Boot < 2026.04 - Signature Verification Bypass via Omitted Hashed-Nodes in FIT
Das U-Boot before 2026.04 allows FIT (Flat Image Tree) signature verification bypass because hashed-nodes is omitted from a hash.
CVSS 8.2
CVE-2021-27097 WRITEUP HIGH WRITEUP
Das U-Boot <2021.04-rc2 - Buffer Overflow
The boot loader in Das U-Boot before 2021.04-rc2 mishandles a modified FIT.
CVSS 7.8
CVE-2021-27138 WRITEUP HIGH WRITEUP
Das U-Boot <2021.04-rc2 - Use After Free
The boot loader in Das U-Boot before 2021.04-rc2 mishandles use of unit addresses in a FIT.
CVSS 7.8