CVSS 3.1 Score 6.7 of 10 (medium)


Published Jul 8, 2024
Updated: Jul 9, 2024
CWE ID 120
CWE ID 123


CVE-2024-6563 is a vulnerability known as "Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')" in Renesas arm-trusted-firmware. The vulnerability allows for local execution of code. The affected program files can be found on the GitHub repository for Renesas arm-trusted-firmware. The vulnerability occurs in line 313 where a buffer overflow can occur, giving an attacker control over the destination of the write operation in line 318. This vulnerability poses a potential danger to organizations as it allows an attacker to execute arbitrary code on the affected system. To remediate this vulnerability, users should apply the patch provided by Renesas arm-trusted-firmware on their GitHub repository.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.


Prioritize, Pinpoint, and Act to Prevent Vulnerability Exploits with Recorded Future

Note: This is just a basic overview providing quick insights into CVE-2024-6563 information. Gain full access to comprehensive CVE data, third party vulnerabilities, compromised credentials and more with Recorded Future
  • Gain complete coverage of your cyber, third party, and physical attack surface
  • Proactively mitigate threats before they turn into costly attacks
  • Make fast, effective, data-driven decisions