Stack Cookie Vulnerability in Trusty's Trusted Applications (TAs): Potential Denial of Service, Privilege Escalation, and Information Disclosure

Stack Cookie Vulnerability in Trusty's Trusted Applications (TAs): Potential Denial of Service, Privilege Escalation, and Information Disclosure

CVE-2021-34375 · MEDIUM Severity

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Trusty contains a vulnerability in all trusted applications (TAs) where the stack cookie was not randomized, which might result in stack-based buffer overflow, leading to denial of service, escalation of privileges, and information disclosure.

Learn more about our Web Application Penetration Testing UK.