CVE-2022-47630
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2022-47630
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-47630.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2022-47630
- Downstream
- Related
- Published
- 2023-01-16T16:15:10Z
- Modified
- 2025-08-09T20:01:27Z
- Severity
-
- 7.4 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H CVSS Calculator
- Summary
- [none]
- Details
-
Trusted Firmware-A through 2.8 has an out-of-bounds read in the X.509 parser for parsing boot certificates. This affects downstream use of getext and authnvctr. Attackers might be able to trigger dangerous read side effects or obtain sensitive information about microarchitectural state.
- References