Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2026/04/21 1:22 a.m.7 views

CVE-2026-29648

In OpenXiangShan NEMU, when Smstateen is enabled, clearing mstateen0.ENVCFG does not correctly restrict access to henvcfg and senvcfg. As a result, less-privileged code may read or write these CSRs without the required exception, potentially bypassing intended state-enable based isolation control...

8.8CVSS5.8AI score0.00319EPSS
Exploits0References1
EUVD
EUVD
added 2026/04/20 9:31 p.m.6 views

EUVD-2026-23962

In OpenXiangShan NEMU, when Smstateen is enabled, clearing mstateen0.ENVCFG does not correctly restrict access to henvcfg and senvcfg. As a result, less-privileged code may read or write these CSRs without the required exception, potentially bypassing intended state-enable based isolation control...

5.8AI score0.00319EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/04/20 12:0 a.m.11 views

NEMU 安全漏洞

NEMU is an open-source teaching system simulator developed by XiangShan. NEMU has a security vulnerability. This vulnerability arises when Smstateen is enabled, and the clearing of mstateen0.ENVCFG fails to properly restrict access to henvcfg and senvcfg. This may allow low-privilege code to bypa...

8.8CVSS5.9AI score0.00319EPSS
Exploits0References2
CVE
CVE
added 2026/04/20 12:0 a.m.11 views

CVE-2026-29648

In OpenXiangShan NEMU, when Smstateen is enabled, clearing mstateen0.ENVCFG does not correctly restrict access to henvcfg and senvcfg. As a result, less-privileged code may read or write these CSRs without the required exception, potentially bypassing intended state-enable based isolation control...

8.8CVSS5.8AI score0.00319EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/04/20 12:0 a.m.3 views

CVE-2026-29648

In OpenXiangShan NEMU, when Smstateen is enabled, clearing mstateen0.ENVCFG does not correctly restrict access to henvcfg and senvcfg. As a result, less-privileged code may read or write these CSRs without the required exception, potentially bypassing intended state-enable based isolation control...

5.8AI score0.00319EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/04/20 12:0 a.m.5 views

CVE-2026-29648

In OpenXiangShan NEMU, when Smstateen is enabled, clearing mstateen0.ENVCFG does not correctly restrict access to henvcfg and senvcfg. As a result, less-privileged code may read or write these CSRs without the required exception, potentially bypassing intended state-enable based isolation control...

5.8AI score0.00319EPSS
Exploits0References4
Rows per page
Query Builder