CVE-2024-7881

🗓️ 28 Jan 2025 15:01:44Reported by ArmType

Unprivileged context may access privileged memory, leading to potential data leakage or privilege escalation.

Reporter	Title	Published	Views	Family All 18
BDU FSTEC	The vulnerability of ARM microprogramming software relates to the execution of operations outside of the buffer in memory, which allows an attacker to disclose protected information.	9 May 202500:00	–	bdu_fstec
Circl	CVE-2024-7881	28 Jan 202515:08	–	circl
CNNVD	ARM CPU 安全漏洞	28 Jan 202500:00	–	cnnvd
Cvelist	CVE-2024-7881	28 Jan 202515:01	–	cvelist
Debian CVE	CVE-2024-7881	28 Jan 202515:01	–	debiancve
NCSC	Vulnerabilities fixed in Google Android and Samsung Mobile	4 Sep 202508:15	–	ncsc
NVD	CVE-2024-7881	28 Jan 202515:15	–	nvd
OSV	ASB-A-361573291	1 Sep 202500:00	–	osv
OSV	DEBIAN-CVE-2024-7881	28 Jan 202515:15	–	osv
OSV	OESA-2025-1342 arm-trusted-firmware security update	29 Mar 202506:24	–	osv

NVD

Node

arm c1-premium_firmwareMatch-

AND

arm c1-premiumMatch-

Node

arm c1-pro_firmwareMatch-

AND

arm c1-proMatch-

Node

arm c1-ultra_firmwareMatch-

AND

arm c1-ultraMatch-

Node

arm cortex-x3_firmwareMatch-

AND

arm cortex-x3Match-

Node

arm cortex-x4_firmwareMatch-

AND

arm cortex-x4Match-

Node

arm cortex-x925_firmwareMatch-

AND

arm cortex-x925Match-

Node

arm neoverse-v2_firmwareMatch-

AND

arm neoverse-v2Match-

Node

arm neoverse-v3_firmwareMatch-

AND

arm neoverse-v3Match-

Node

arm neoverse-v3ae_firmwareMatch-

AND

arm neoverse-v3aeMatch-

[
  {
    "defaultStatus": "affected",
    "product": "Neoverse V2",
    "vendor": "Arm",
    "versions": [
      {
        "status": "affected",
        "version": "0"
      }
    ]
  },
  {
    "defaultStatus": "affected",
    "product": "Neoverse V3",
    "vendor": "Arm",
    "versions": [
      {
        "status": "affected",
        "version": "0"
      }
    ]
  },
  {
    "defaultStatus": "affected",
    "product": "Neoverse V3AE",
    "vendor": "Arm",
    "versions": [
      {
        "status": "affected",
        "version": "0"
      }
    ]
  },
  {
    "defaultStatus": "affected",
    "product": "Cortex-X3",
    "vendor": "Arm",
    "versions": [
      {
        "status": "affected",
        "version": "0"
      }
    ]
  },
  {
    "defaultStatus": "affected",
    "product": "Cortex-X4",
    "vendor": "Arm",
    "versions": [
      {
        "status": "affected",
        "version": "0"
      }
    ]
  },
  {
    "defaultStatus": "affected",
    "product": "Cortex-X925",
    "vendor": "Arm",
    "versions": [
      {
        "status": "affected",
        "version": "0"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "C1-Pro",
    "vendor": "Arm",
    "versions": [
      {
        "status": "affected",
        "version": "0"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "C1-Ultra",
    "vendor": "Arm",
    "versions": [
      {
        "status": "affected",
        "version": "0"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "C1-Premium",
    "vendor": "Arm",
    "versions": [
      {
        "status": "affected",
        "version": "0"
      }
    ]
  }
]

Source	Link
developer	www.developer.arm.com/Arm%20Security%20Center/Arm%20CPU%20Vulnerability%20CVE-2024-7881

18 Dec 2025 15:36Current

6.4Medium risk

Vulners AI Score6.4

CVSS 3.15.1

EPSS0.00124

SSVC