The AES instructions on the ARMv8 platform do not have an algorithm that is "intrinsically resistant" to side-channel attacks. NOTE: the vendor reportedly offers the position "while power side channel attacks ... are possible, they are not directly caused by or related to the Arm...
7.5CVSS
7.5AI Score
0.001EPSS
In Oppo's battery application, the third-party SDK provides the function of loading a third-party Provider, which can be...
7.8CVSS
7.5AI Score
0.0004EPSS
OPPO Android Phone with MTK chipset and Android 8.1/9/10/11 versions have an information leak vulnerability. The “adb shell getprop ro.vendor.aee.enforcing” or “adb shell getprop ro.vendor.aee.enforcing” return...
5.5CVSS
5.4AI Score
0.0004EPSS
Arm Armv8-A core implementations utilizing speculative execution past unconditional changes in control flow may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis, aka "straight-line...
5.5CVSS
5.2AI Score
0.001EPSS