What the vulnerability does

01Description

In keymaster, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: DTV04427687; Issue ID: MSV-3183.

Key dates

02Disclosure timeline

April 7, 2025 CVE published
April 7, 2025 Record updated