Browse all 5 CVE security advisories affecting OP-TEE. AI-powered Chinese analysis, POCs, and references for each vulnerability.
OP-TEE is a Trusted Execution Environment (TEE) implementation designed to provide a secure area for sensitive operations on mobile and embedded devices. Historically, vulnerabilities in OP-TEE have commonly included remote code execution, privilege escalation, and memory corruption flaws due to insufficient input validation and boundary checks. The project maintains a security-focused design with isolation between trusted and untrusted worlds, though its 5 recorded CVEs highlight potential weaknesses in implementation. Notable security characteristics include hardware-backed security and support for multiple architectures, though no major public incidents have been documented. The project's open-source nature allows for community scrutiny but also exposes it to potential exploitation if vulnerabilities remain unpatched.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-33662 | OP-TEE: RSASSA EMSA- PKCS1-v1_5 underflow in emsa_pkcs1_v1_5_encode() — optee_osCWE-190 | 7.5 | High | 2026-04-24 |
| CVE-2026-33317 | OP-TEE: PKCS#11 TA out-of-bounds read and memory disclosure — optee_osCWE-125 | 8.7 | High | 2026-04-24 |
| CVE-2025-46733 | REE userspace code can panic TAs, leading to fTPM PCR reset and data disclosure — optee_osCWE-755 | 7.9 | High | 2025-07-04 |
| CVE-2023-41325 | OP-TEE double free in shdr_verify_signature — optee_osCWE-415 | 7.4 | High | 2023-09-15 |
| CVE-2022-46152 | OP-TEE Trusted OS vulnerable to Improper Validation of Array Index in the cleanup_shm_refs function — optee_osCWE-129 | 8.2 | High | 2022-11-29 |
This page lists every published CVE security advisory associated with OP-TEE. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.