We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Crisp.chat (Helpdesk and Chat)

Ok

THREATINT
PUBLISHED

CVE-2025-1122



Description

Out-Of-Bounds Write in TPM2 Reference Library in Google ChromeOS 122.0.6261.132 stable on Cr50 Boards allows an attacker with root access to gain persistence and Bypass operating system verification via exploiting the NV_Read functionality during the Challenge-Response process.

Reserved 2025-02-07 | Published 2025-04-15 | Updated 2025-04-17 | Assigner ChromeOS

Problem types

Out-of-bounds Write

Product status

122.0.6261.132 before 122.0.6261.132
affected

References

issuetracker.google.com/issues/324336238

issues.chromium.org/issues/b/324336238

cve.org (CVE-2025-1122)

nvd.nist.gov (CVE-2025-1122)

Download JSON

Share this page
https://cve.threatint.eu/CVE/CVE-2025-1122

Support options

Helpdesk Chat, Email, Knowledgebase