CVE-2024-7881

🗓️ 28 Jan 2025 15:01:44Reported by ArmType

Unprivileged context can access privileged location via data memory-dependent prefetch engine exploit.

Reporter	Title	Published	Views	Family All 18
BDU FSTEC	The vulnerability of ARM microprogramming software relates to the execution of operations outside of the buffer in memory, which allows an attacker to disclose protected information.	9 May 202500:00	–	bdu_fstec
Circl	CVE-2024-7881	28 Jan 202515:08	–	circl
CNNVD	ARM CPU 安全漏洞	28 Jan 202500:00	–	cnnvd
CVE	CVE-2024-7881	28 Jan 202515:01	–	cve
Debian CVE	CVE-2024-7881	28 Jan 202515:01	–	debiancve
NCSC	Vulnerabilities fixed in Google Android and Samsung Mobile	4 Sep 202508:15	–	ncsc
NVD	CVE-2024-7881	28 Jan 202515:15	–	nvd
OSV	ASB-A-361573291	1 Sep 202500:00	–	osv
OSV	DEBIAN-CVE-2024-7881	28 Jan 202515:15	–	osv
OSV	OESA-2025-1342 arm-trusted-firmware security update	29 Mar 202506:24	–	osv

[
  {
    "defaultStatus": "affected",
    "product": "Neoverse V2",
    "vendor": "Arm",
    "versions": [
      {
        "status": "affected",
        "version": "0"
      }
    ]
  },
  {
    "defaultStatus": "affected",
    "product": "Neoverse V3",
    "vendor": "Arm",
    "versions": [
      {
        "status": "affected",
        "version": "0"
      }
    ]
  },
  {
    "defaultStatus": "affected",
    "product": "Neoverse V3AE",
    "vendor": "Arm",
    "versions": [
      {
        "status": "affected",
        "version": "0"
      }
    ]
  },
  {
    "defaultStatus": "affected",
    "product": "Cortex-X3",
    "vendor": "Arm",
    "versions": [
      {
        "status": "affected",
        "version": "0"
      }
    ]
  },
  {
    "defaultStatus": "affected",
    "product": "Cortex-X4",
    "vendor": "Arm",
    "versions": [
      {
        "status": "affected",
        "version": "0"
      }
    ]
  },
  {
    "defaultStatus": "affected",
    "product": "Cortex-X925",
    "vendor": "Arm",
    "versions": [
      {
        "status": "affected",
        "version": "0"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "C1-Pro",
    "vendor": "Arm",
    "versions": [
      {
        "status": "affected",
        "version": "0"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "C1-Ultra",
    "vendor": "Arm",
    "versions": [
      {
        "status": "affected",
        "version": "0"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "C1-Premium",
    "vendor": "Arm",
    "versions": [
      {
        "status": "affected",
        "version": "0"
      }
    ]
  }
]

Source	Link
developer	www.developer.arm.com/Arm%20Security%20Center/Arm%20CPU%20Vulnerability%20CVE-2024-7881

18 Nov 2025 13:14Current

EPSS0.00191

CWE-1422