Caliptra Core Runtime Firmware
2 CVEs affecting Caliptra Core Runtime Firmware. Latest disclosed: 2026-06-24. Critical: 0, High: 0.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2026-6458 | | 2026-06-24 | Missing cryptographic step in Caliptra Core Firmware (aes_256_gcm_update module) results in an incorrect GCM authentication tag. When the streaming AES-256-GCM… | |
CVE-2026-5818 | | 2026-06-24 | Incorrect check of function return value in Caliptra Core Runtime Firmware (ActivateFirmwareCmd::activate_fw modules) allows bypass of Caliptra Core's verifica… |