Lucene search
+L

218 matches found

OSV
OSV
added 2026/01/13 5:15 p.m.6 views

CVE-2025-25176

Intermediate register values of secure workloads can be exfiltrated in workloads scheduled from applications running in the non-secure environment of a platform...

9.1CVSS5.8AI score0.00309EPSS
Exploits0References1
NVD
NVD
added 2026/01/13 5:15 p.m.6 views

CVE-2025-25176

Intermediate register values of secure workloads can be exfiltrated in workloads scheduled from applications running in the non-secure environment of a platform...

9.1CVSS0.00309EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/01/13 4:27 p.m.3 views

CVE-2025-25176 GPU DDK - GPU Register value contents leaked from secure workloads to non-secure world

Intermediate register values of secure workloads can be exfiltrated in workloads scheduled from applications running in the non-secure environment of a platform...

6.5AI score0.00309EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/01/13 4:27 p.m.29 views

CVE-2025-25176 GPU DDK - GPU Register value contents leaked from secure workloads to non-secure world

Intermediate register values of secure workloads can be exfiltrated in workloads scheduled from applications running in the non-secure environment of a platform...

0.00309EPSS
Exploits0References1
CVE
CVE
added 2026/01/13 4:27 p.m.12 views

CVE-2025-25176

The CVE-2025-25176 entry pertains to Imagination Graphics DDK GPU driver vulnerabilities; described issue is exfiltration of intermediate register values from secure workloads into non-secure world when scheduled by applications in the non-secure environment. Affected component: GPU driver/SDK (I...

9.1CVSS6.5AI score0.00309EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2026/01/13 12:0 a.m.6 views

Imagination Graphics DDK 安全漏洞

Imagination Graphics DDK is a suite of GPU driver tools from Imagination UK. The Imagination Graphics DDK suffers from a security vulnerability that stems from the potential disclosure of intermediate register values for secure workloads scheduled by applications running in the platform's...

9.1CVSS5.8AI score0.00309EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/01/13 12:0 a.m.8 views

PT-2026-2447

CVE-2025-25176 Intermediate register values of secure workloads can be exfiltrated in workloads scheduled from applications running in the non-secure environment of a platform. https://t.co/4OqwVJM1UN...

6.9AI score0.00309EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/01/07 12:0 a.m.3 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000244)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000244 advisory. In the Linux kernel before 4.20.14, expanddownwards in mm/mmap.c lacks a check for the mmap minimum address, which makes it easier for attackers to exploit kernel NU...

5.5CVSS6.5AI score0.05667EPSS
Exploits6References4
Vulnrichment
Vulnrichment
added 2025/12/16 12:0 a.m.3 views

CVE-2025-62862

Ampere AmpereOne AC03 devices before 3.5.9.3, AmpereOne AC04 devices before 4.4.5.2, and AmpereOne M devices before 5.4.5.1 allow an incorrectly formed SMC call to UEFI-MM Boot Error Record Table driver that could result in 1 an out-of-bounds read which leaks Secure-EL0 information to a process...

6.4AI score0.00109EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/12/02 9:20 a.m.13 views

CVE-2025-54515

The Secure Flag passed to Versal™ Adaptive SoC’s Trusted Firmware for Cortex®-A processors TF-A for Arm’s Power State Coordination Interface PSCI commands were incorrectly set to secure instead of using the processor’s actual security state. This would allow the PSCI requests to appear they were...

1CVSS6.9AI score0.00111EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/11/25 5:9 p.m.7 views

CVE-2025-48507

The security state of the calling processor into Trusted Firmware TF-A is not used and could potentially allow non-secure processors access to secure memories, access to crypto operations, and the ability to turn on and off subsystems within the SOC...

8.6CVSS6.6AI score0.00163EPSS
Exploits0References1
EUVD
EUVD
added 2025/11/23 6:30 p.m.6 views

EUVD-2025-198576

The security state of the calling processor into Arm® Trusted Firmware TF-A is not used and could potentially allow non-secure processors access to secure memories, access to crypto operations, and the ability to turn on and off subsystems within the SOC...

8.6CVSS6.3AI score0.00163EPSS
Exploits0References2
NVD
NVD
added 2025/11/23 6:15 p.m.11 views

CVE-2025-54515

The Secure Flag passed to Versal™ Adaptive SoC’s Trusted Firmware for Cortex®-A processors TF-A for Arm’s Power State Coordination Interface PSCI commands were incorrectly set to secure instead of using the processor’s actual security state. This would allow the PSCI requests to appear they were...

1CVSS0.00111EPSS
Exploits0References1
NVD
NVD
added 2025/11/23 5:15 p.m.10 views

CVE-2025-48507

The security state of the calling processor into Trusted Firmware TF-A is not used and could potentially allow non-secure processors access to secure memories, access to crypto operations, and the ability to turn on and off subsystems within the SOC...

8.6CVSS0.00163EPSS
Exploits0References1
CVE
CVE
added 2025/11/23 5:15 p.m.17 views

CVE-2025-54515

The CVE describes a mis-set Secure Flag in the Versal Adaptive SoC’s ARM TF-A PSCI handling, where PSCI commands were marked secure instead of reflecting the processor’s actual security state. Affected: Versal Adaptive SoC with Cortex-A TF-A, enabling PSCI requests to appear from the secure state...

1CVSS6.5AI score0.00111EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/11/23 5:15 p.m.16 views

CVE-2025-54515

The Secure Flag passed to Versal™ Adaptive SoC’s Trusted Firmware for Cortex®-A processors TF-A for Arm’s Power State Coordination Interface PSCI commands were incorrectly set to secure instead of using the processor’s actual security state. This would allow the PSCI requests to appear they were...

1CVSS0.00111EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/11/23 5:7 p.m.4 views

CVE-2025-48507

The security state of the calling processor into Trusted Firmware TF-A is not used and could potentially allow non-secure processors access to secure memories, access to crypto operations, and the ability to turn on and off subsystems within the SOC...

8.6CVSS6.2AI score0.00163EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2025/11/23 5:7 p.m.2 views

CVE-2025-48507

The security state of the calling processor into Trusted Firmware TF-A is not used and could potentially allow non-secure processors access to secure memories, access to crypto operations, and the ability to turn on and off subsystems within the SOC...

8.6CVSS5.5AI score0.00163EPSS
Exploits0References2
CVE
CVE
added 2025/11/23 5:7 p.m.18 views

CVE-2025-48507

CVE-2025-48507 concerns the unused security state of the calling processor in Arm Trusted Firmware (TF-A) , which could allow a non-secure processor to access secure memories , perform privileged cryptographic operations , and control subsystems within the SOC. Documented exposure stems from AMD-...

8.6CVSS6.2AI score0.00163EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/11/23 5:7 p.m.13 views

CVE-2025-48507

The security state of the calling processor into Trusted Firmware TF-A is not used and could potentially allow non-secure processors access to secure memories, access to crypto operations, and the ability to turn on and off subsystems within the SOC...

8.6CVSS0.00163EPSS
Exploits0References1
Rows per page
Query Builder