VYPR
Vendor

Trusty

Products
3
CVEs
5
Across products
5
Status
Private

Products

3

Recent CVEs

5
  • CVE-2021-34374HigJun 30, 2021
    risk 0.50cvss 7.7epss 0.00

    Trusty contains a vulnerability in command handlers where the length of input buffers is not verified. This vulnerability can cause memory corruption, which may lead to information disclosure, escalation of privileges, and denial of service.

  • CVE-2024-39428MedJul 1, 2024
    risk 0.44cvss 6.8epss 0.00

    In trusty service, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service with System execution privileges needed

  • CVE-2025-6193MedJun 20, 2025
    risk 0.38cvss 5.9epss 0.01

    A command injection vulnerability was discovered in the TrustyAI Explainability toolkit. Arbitrary commands placed in certain fields of a LMEValJob custom resource (CR) may be executed in the LMEvalJob pod's terminal. This issue can be exploited via a maliciously crafted…

  • CVE-2024-39427MedJul 1, 2024
    risk 0.33cvss 5.1epss 0.00

    In trusty service, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service with System execution privileges needed

  • CVE-2021-34395LowJun 22, 2021
    risk 0.25cvss 3.9epss 0.00

    Trusty TLK contains a vulnerability in its access permission settings where it does not properly restrict access to a resource from a user with local privileges, which might lead to limited information disclosure, a low risk of modifcations to data, and limited denial of service.