CVSS 3.1 Score 6.7 of 10 (medium)


Published Jun 24, 2024
Updated: Jun 26, 2024
CWE ID 191


CVE-2024-6285 is an Integer Underflow (Wrap or Wraparound) vulnerability found in Renesas arm-trusted-firmware. This vulnerability occurs due to an integer underflow in image range check calculations, which could allow bypassing address restrictions and loading of images to unallowed addresses. The affected products include wptVnb and wmecpT. Remediation for this vulnerability has not been specified. The potential danger it poses to an organization is categorized as MEDIUM with a base score of 6.7, with high privileges required and high impact on integrity and confidentiality. The attack vector is LOCAL, and the availability impact is HIGH.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.


Prioritize, Pinpoint, and Act to Prevent Vulnerability Exploits with Recorded Future

Note: This is just a basic overview providing quick insights into CVE-2024-6285 information. Gain full access to comprehensive CVE data, third party vulnerabilities, compromised credentials and more with Recorded Future
  • Gain complete coverage of your cyber, third party, and physical attack surface
  • Proactively mitigate threats before they turn into costly attacks
  • Make fast, effective, data-driven decisions